Thread: ssl extender license
View Single Post
  #5 (permalink)  
Old 2008-02-06
chillyjim chillyjim is offline
Senior Member
  
Join Date: 2005-08-29
Location: Upstate NY
Posts: 1,670
Rep Power: 5
chillyjim has an average reputation (10+)
Send a message via AIM to chillyjim Send a message via Skype™ to chillyjim
Default Re: ssl extender license
Quote:
Originally Posted by accesslimiter View Post
Thanks, but this is not what I see and I am getting conflicting information from Checkpoint. CP states the ssl extender license, for VPN-1, is based off the users IP once they connect and stored in a table that gets "refreshed" around 2-4 weeks and is con-current.
I don't know who is telling you this, but it is wrong.
The license is based on users, not IP addresses.
The "refresh" should be 30 days.
A cpstop;cpstart will not (at least should not) clear the user list.

Unlike SecureClient there is no distinction between users. In SC the count is based on how many users can use the "Policy Server". This is an issue that has been talked about, but the low demand for limiting who can use SNX, leaves it on the back burner.

If this is a real issue for you, please raise it with your Check Point SE and file an RFE.
Reply With Quote