This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
KWD
Explorer
‎2019-10-29 01:27 PM

Site to Site VPN HTTPS External Interface

Hello,

I have an existing clusterA with 2 gateways and a SMS server.  Cluster A has several internal interfaces, an external interface and a sync.  I have a new external clusterB that I have successfully added to my SMS.  The external clusterB has 2 internal interfaces, 1 external interface and a sync interface.

From the internal interface of clusterA to the external interface of new clusterB, I was able to SSH, HTTPS and ping.  After setting up a site to site VPN between clusterA and clusterB, I can no longer SSH or HTTPS from the internal interface of clusterA to the external interface of clusterB, but I can still ping from the internal interface of clusterA to the external interface of clusterB. 

I can SSH/HTTPS from the internal interface of clusterA to the internal interfaces of cluster B.

On my other site to site VPNs (which I don't manage with my SMS), I see SSH being accepted on an implied rule, but on my new cluster, SSH just drops to the cleanup rule.

Any ideas on what the issue is?  Why I can no longer SSH/HTTPS from internal interface of clusterA to the external interface of clusterB?

Thanks

0 Kudos
3 Replies
PhoneBoy
Admin
Admin
‎2019-11-01 01:09 PM

Have you done a tcpdump/fw monitor on both ends to very the traffic is getting there?
What does it look like?
Also, what errors do you see in the logs?
KWD
Explorer
‎2019-11-04 09:35 AM
In response to PhoneBoy

I was able to resolve the issue. But I appreciate your reply.
0 Kudos
PhoneBoy
Admin
Admin
‎2019-11-05 04:29 AM
In response to KWD

What was the issue?
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events