SecureClient/FW acting crazy!

[Hit-N-Run]

I am in the process of moving my VPN endpoint to a different server. I installed R60 HFA5 on the new server, installed my licenses, setup my objects and rules and everything seems fine. When I test a SecureClient It authenticates and it gets it's office mode IP. When I try to access systems on the inside I can see the traffic is getting encrypted when I ping but I get no replies.

The inside network knows how to route to my office mode network so it's not that. When I go to ping or trace to the SecureClient that has the office mode address from an inside system the traffic is dropped by the firewall.

I even got the "Configuring a SecureRemote client for Remote VPN Connectivity" pdf from Checkpoint and went though it step by step to no avail. It seems to be setup fine but it's just not working.

Any help would be greatly appreciated.

[lammbo]

Since you're using SecureClient, did you set the Desktop Security policy as well?

You must have at least 1 rule in Outbound and 1 rule in Inbound or it will not work, even if they are any rules.

Anyone else feel free to chime in, but I think that many prefer allowing any out and nothing in unless you're on hardcore lockdown.