This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Moudar
Advisor
‎2024-05-20 02:57 AM

VPN site-to-site & DynamicIP

Hi,

I'm hoping to get some information on integrating a new Check Point 1575 appliance into our existing Security Management Server (SMS) environment. We currently have a cluster of 6500 appliances managed centrally by this SMS version 81.20.

The plan is to add the 1575 appliance, located at a branch office, to the central management of the SMS. It will utilize Dynamic IP for its internet connection.

Could you please advise if there's a specific Smart Knowledge (SK) article that outlines the steps for such a configuration?

Thanks in advance for your assistance.

0 Kudos
(1)
4 Replies
_Val_
Admin
Admin
‎2024-05-20 03:40 AM

You just need to follow the central management deployment guide instructions and set up your appliance as a DIAP GW.

For the latter, see FAQ SK

 

0 Kudos
Moudar
Advisor
‎2024-05-20 06:25 AM
In response to _Val_

When trying to install the policy on a DAIP gateway I get this:

cannot-install.png

a dynamic interface is configured under network management:

dynamic-interface.png

 

What part of sk33893 should i check to solve this, because it says: "Disable the Dynamic Address Gateway" how does that make sense?

 

What about the other message:

- dlopen: /opt/CPsuite-R81.20/fw1/tmp/install_policy/b52d5836-838f-4f00-aefd-7b61301a709c/FW1/lib/libcpatlas.so: cannot open shared object file: No such file or directory
--------------------------------------------------------------------------------

0 Kudos
CaseyB
Advisor
‎2024-05-20 07:47 AM
In response to Moudar

You need to create the object as a 1575 appliance instead of an open server. The open server is generating different options.

No worries about the libcpatlas.so, it is a cosmetic bug.

0 Kudos
Moudar
Advisor
‎2024-05-20 07:54 AM
In response to CaseyB

I am trying this in lab (EVE-NG) so no 1575 gateway is available, the idea is to simulate the process in lab before applying it in reality

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events