Quote:
Originally Posted by luisrocha  Last time i had that problem it was the port on the switch that belongs to 2 vlans at same time. |
I think I can clarify this. I can't guarantee that my problem is solved, as we haven't implemented the changes yet, but after many weeks, checkpoint finally came back with a reply that makes sense.
They say our problem is that we have an IP on the physical interface, as well as a tagged VLAN with an IP on a subinterface. Official response is that we should remove the IP from the physical interface and only use vlan subinterfaces (if the interface is vlan'd at all).
This requires a network interruption and quite a bit of reconfiguration, so it might be a few more weeks before I'm able to verify that this solves the problem.