Dear all,
Here's the situation :
- Secureclient R60
- Gateway cluster with R65 HFA2 and IPSO 4.1-build40
This gateway is na internal cluster with the "external" interface in a dmz. Also this ip is the object-ip. People come in on other interfaces than the external to setup a client VPN, but they fail, although they nicely succeed to create/update the topology.
On the gateway-cluster I activated different option in the VPN Link selection exactly to overcome this issue, but still no luck. After this I did a change via guidbedit as written in <a href="https://supportcenter.checkpoint.com/supportcenter/portal?js_peid=P-114a7bc3b09-10006&eventSubmit_doGoviewsolutiondetails&solution id=sk32229">sk32229 </a>
If I do an fw monitor to sniff, I can see the client seems to keep trying to do a tunnel_test (udp 18243), but always to the objectip ! Never to the actual ip specified in the vpn link selection.
Anyone ?