 | ||
 Cluster IP instead of Host IP (Radius) | ||
| CPUG | |
| The Check Point User Group | |
| A Resource For The Check Point Community. Fast. Useful. Independent. | |
|
| |||||||
 |
| | LinkBack | Thread Tools | Display Modes |
 2007-02-10 | |||
| |||
 Cluster IP instead of Host IP (Radius) Setup: NG AI R55 Trying to get clustered firewalls to authenticate with radius servers. We have some of the clusters (all SecurePlatform) sourcing from their host IP address (which is what we want), but we have others sourcing from their shared-IP address. When adding the "no-nat" rule, the Microsoft IAS server reported that the "NAS-IP address" was then the host, but the "Client IP address" was still the shared... Anyone have any tidbits or experiences? It's just bizarre why some clusters are working fine, and some aren't. There must be some setting within the cluster that is causing it to not use the host IP address of the cluster members.  |
| 2007-02-11 | |||
| |||
| Re: Cluster IP instead of Host IP (Radius) Update to my issue... On a post somewhere buried on this site, there was mention of disabling a setting under "3rd party configuration". Apparently, we had to first disable ClusterXL on the cluster object to even see that tab on the left... Then we were able to go into 3rd party config and not have the firewall modules hide behind the shared IP. Then we went back to set ClusterXL again... Anyways, it seems to have resolved our issue... Seems like a bug though, if enabling ClusterXL hides the 3rd party option, yet the settings within 3rd party still take effect? Oh well, all is good! |
|
| Thread Tools | |
| Display Modes | |
| |
Linear Mode
