Thread: Interface state unknown using fw monitor
View Single Post
  #2 (permalink)  
Old 2008-03-07
Tan Da Boss Tan Da Boss is offline
Member
  
Join Date: 2007-04-11
Location: Paris, France
Posts: 63
Rep Power: 2
Tan Da Boss has an average reputation (10+)
Send a message via MSN to Tan Da Boss
Default Re: Interface state unknown using fw monitor
Hi Stephan,

one of my customers has a similar issue.
he is using Nortel Contivity for specific users and this VPN tunnel passes through his Check Point Site to Site VPN (so VPN inside VPN). No VLAN define on the interfaces.
This architecture was working with NG AI R55 and since the R62 migration, he has had this issue.
In the fwmonitor, we can see unknown interface on the outgoing interface.
We are still troubleshooting this issue without any clue. Maybe CP'TAC will find something.
As a workaround we use a GRE tunnel to replace the Site to Site VPN.

Has anybody encountered this issue also?

Thx

Tan
Reply With Quote