Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
dhueber
Explorer

IKE failure on VPN between checkpoint and OCI

Dear all,

we are currently trying to configure a VPN between our on-prem checkpoint cluster and Oracle Cloud Infrastructure (OCI).

On OCI side the tunnel is shown as up and on the checkpoint console, I do see an IKE SA as well as an IPSec SA.
However when trying to run and SSH, nothing goes through, even if the package looks good:

Screenshot 2022-08-04 at 15.27.28.png

When looking to the VPN blade logs after deleting the SAs for this gateway, I can see following error message:

Screenshot 2022-08-04 at 15.30.43.png

Any idea where it could come from or how I could get more information?

 

Many thanks

 

David

0 Kudos
3 Replies
PhoneBoy
Admin
Admin

You might check this: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut...
If not, proceed to the troubleshooting article linked at the end of this SK.

0 Kudos
Yuber_Sierra_av
Participant

Hello,

I had a similar issue with OCI, we solved it by changing IKEv2 to IKEv1 in both sides.

0 Kudos
the_rock
Legend
Legend

Seen that happen with Azure as well, though ikev2 works well with route-based tunnels.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events