This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Dan_Currens
Participant
‎2019-08-16 04:23 PM

PSL Drop ADVP on DHCP Packets

R80.20 Jumbo 47 Cluster does not seem to pass DHCP request/response traffic, debug log shows:

dropped by fwpslglue_chain Reason: PSL Drop: ADVP on port 67 traffic from the DHCP servers to the clients.

Anybody have a solution?  I have the DHCP server in an IPS exceptions rule.

SmartConsole logs show the traffic is all accepted, but clients not receiving an IP address.

0 Kudos
4 Replies
PhoneBoy
Admin
Admin
‎2019-08-17 05:02 PM

DHCP Enforcement is not done in IPS.
Best to take some packet captures and engage with the TAC.
0 Kudos
Rafal_N
Contributor
‎2021-03-23 09:46 AM

Hi, 

Did You resolve it with TAC? I have similar issue on R80.40 take 91.

Best regards,

Rafal

0 Kudos
HeikoAnkenbrand
Champion Champion
Champion
‎2021-03-23 10:14 AM

Hi @Dan_Currens,

I had the same fwpslglue_chain issue. You only need to install the last Jumbo 188.

➜ CCSM Elite, CCME, CCTE ➜ www.checkpoint.tips
0 Kudos
Rafal_N
Contributor
‎2021-03-24 12:07 AM
In response to HeikoAnkenbrand

In my case it was old and new dhcp services used in policy. If we removed old one all drops this kind dropped by fwmultik_process_f2p_cookie_inner Reason: PSL Drop: ADVP disapear. 

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events
    li.common.scroll-to.top