 | ||
 Unable to authenticate from newly created DMZ | ||
| CPUG | |
| The Check Point User Group | |
| A Resource For The Check Point Community. Fast. Useful. Independent. | |
|
| |||||||
 |
| | LinkBack | Thread Tools | Display Modes |
 2008-03-21 | |||
| |||
 Unable to authenticate from newly created DMZ Hi, I currently have an issue with wireless users, who come in from a new DMZ i've just created, cannot authenticate through VPN using SecureClient in order to get access to the inside LAN. Here are a few things I've done/noticed: -Users in this DMZ have access to the Internet without any Issues -Users are able to update their topology -When trying to log in, users get a Gateway Not Responding message -Regular VPN access from OUTSIDE and from the inside LAN works fine -LOGS originially showed a blocked connection from the Client towards the Cluster with a UDP 18234 (tunnel_test) via the Stealth Rule. This was Odd but I decided to add an explicit rule at the very top to allow this. This is now allowed and green -Global Properties do allow Control Connections (and is set to FIRST) Logs do NOT show anything else blocked, I never see any TCP or UDP 500 (IKE) packet traffic between the two when packet sniffing ------------------- | CHKP Cluster****| |**************|---------NEW DMZ (Cannot connect through VPN) | NGX R60 HFA03**| | IPSO 3.9*******| |***************| --------------------- | | Inside LAN (VPN Works 100%) I've been troubleshooting this all day yesterday and couldn't find any issues... Anyone see anything wrong?  |
|
| Thread Tools | |
| Display Modes | |
| |
Linear Mode
