I've set up our Sydney 12200 Check Point FW as a VPN GW for remote users.
The FW communicates with our RSA ACE and this is working well
Test users can authenticate and obtain the VPN IP address, also performing a"route print" the laptops have learnt all the internal routes.
The issue is the laptops cannot access the internal network and the FW logs do not show any traffic from the laptops to the destination. Performing a tracert to an internal destination fails at first hop.
The Sydney FW has the correct static routes configured and itself can access internal networks.
Any help would be appreciated.