Discover the Future of Cyber Security:
What’s New in Check Point’s Quantum R82
Pick the Best of the Best of
CheckMates 2024!
Share your Cyber Security Insights
On-Stage at CPX 2025
Simplifying Zero Trust Security
with Infinity Identity!
Zero Trust Implementation
Help us with the Short-Term Roadmap
CheckMates Go:
What's New in R82
Have you checked if the VPN certificate is still valid?
You can see that if you open the FW object in SmartConsole under ipsecVPN and then renew/view
Maybe worth renew it anyway on both members (after renew policy push).
Try to see the CRL traffic with tcpdump to be 100% sure it is sending yes or no. And if other side get's the traffic.
Sometimes firewall tries to do CRL via VPN tunnel towards management system that will create a looping issue 😉
tcpdump -nnei any port 18264
About CheckMates
Learn Check Point
Advanced Learning
YOU DESERVE THE BEST SECURITY
