Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
SaraDokaj
Explorer

1800 SMB appliance VPN configuration.

We have set up a 1800 SMB appliance  in one of our networks and we have configured the VPN and a Remote Access User according to the Guide but we can only connect with the SSL Network Extender not the Checkpoint VPN Client according to the guide they use the same port. We thought it may be a version compatibility problem but we can't find the problem. When trying to connect with the Checkpoint VPN Client nothing shows in the logs. Can someone advise us please?

0 Kudos
6 Replies
the_rock
Legend
Legend

I dont believe you can use same port. Does it work if you use different port number?

https://community.checkpoint.com/t5/Management/Mobile-Access-Blade-Visitor-Mode-443-port/m-p/36104

0 Kudos
SaraDokaj
Explorer

We tried changing the remote access VPN port in the settings and changed it from 443 to 4433 but still only the SSL Network Extender worked not the Remote Client. 

0 Kudos
G_W_Albrecht
Legend
Legend

I would suggest a quick chat with TAC to resolve the issue in a RAS  !

CCSE CCTE CCSM SMB Specialist
0 Kudos
Chris_Atkinson
Employee Employee
Employee

Is this appliance centrally or locally managed, if the latter which of the following do you have selected?

VPN.png

CCSM R77/R80/ELITE
0 Kudos
SaraDokaj
Explorer

We tried selecting only the checkpoint VPN clients and didn't work with the Checkpoint Remote client. We were able to connect with the SSL Network Extender when we had selected the first three options but the Checkpoint Remote client still not working. We have not configured the last option.

0 Kudos
the_rock
Legend
Legend

What I was personally referring to was when you go to gateway section for visitor mode, select say random port ( NOT https). You can create another port, say 4443 and select it there, and then when you attempt to use endpoint client, just have people add :4443 to IP or fqdn when connection....so say if your external IP resolves to vpn.mycompany.com, you would try connect from endpoint client by creating new site as vpn.mycompany.com:4443...though since its SMB appliance, Im not really that verse in those appliances, so not sure if that option would be same as regular non smb firewalls.

Can you try that way?

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events