This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Bart_Dierick
Participant
‎2018-05-31 12:00 PM

Checkpoint endpoint security: Other VPN's and windows built in VPN not working when checkpoint is installed

In checkpoint version 80.70 or lower, I was able to have checkpoint installed on my machine and use other VPN's as well.

What I had to do was taking away the obscurity of the trac.defaults and set it on 0. Afterwards it was sufficient to set "allow disable firewall" on true and "firewall_enabled" on false.

But now (due to windows 10 upgrades) I was forced to use a higher version of checkpoint. 80.71> I tried everything but I can't disable the firewall (while being disconnected) anymore. I tried the same procedure as before, but it's not working anymore.

Can someone please assist in how to setup checkpoint to be fully working when connected to a site. But if I'm not connected with checkpoint, still be able to use other VPN's...

Kind Regards

Dierick Bart

5 Replies
PhoneBoy
Admin
Admin
‎2018-06-01 12:18 PM

As far as I know, the process for allowing end users to disable the desktop firewall have not changed with current versions of the Endpoint client.

You can definitely configure whether users are allowed to disable the Desktop Firewall as follows:

These settings can be done per user/group as well. 

See: Re: Exclude Subnet

0 Kudos
Bart_Dierick
Participant
‎2018-06-04 02:34 AM
In response to PhoneBoy

Thanks for your answer. But I'm an external consultant. And I have a few customers with different VPN's. One of them has checkpoint. But when I install that one, I can't disable the firewall of it (client side) as I'm only a client user. And this way I can't use my other VPN's anymore because of the agressive CheckPoint VPN

PhoneBoy
Admin
Admin
‎2018-06-04 06:40 AM
In response to Bart_Dierick

Unfortunately, it's a server-controlled setting by design, especially if your client is using Endpoint Security VPN.

The fact it could have been disabled on earlier versions of the client is considered a defect.

You might try installing the client as "Check Point Mobile" (which does not include the Firewall component). 

However, your client would have to allow this client to connect, as shown here:

 

0 Kudos
Bart_Dierick
Participant
‎2018-06-08 06:25 AM
In response to PhoneBoy

Very disappointed in the Checkpoint Client software. That everything has to be enabled when I'm connected to a checkpoint environment. I understand that...

I don't understand the fact that when it's not connected, that it's blocking other (VPN) software from working.

Kind Regards

Dierick Bart

0 Kudos
PhoneBoy
Admin
Admin
‎2018-06-08 08:33 AM
In response to Bart_Dierick

We have a number of remote access solutions, as noted here: Check Point Remote Access Solutions 

The Endpoint Security VPN client (which includes a firewall) is designed to be installed on endpoints managed by the organization.

That client includes a firewall that is active whether or not you are connected to the organization.

Again, that is by design.

Clearly your endpoint is NOT managed by the organization in question.

You will need to work with the organization in question to either:

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events