CPUG: The Check Point User Group

Resources for the Check Point Community, by the Check Point Community.


First, I hope you're all well and staying safe.
Second, I want to give a "heads up" that you should see more activity here shortly, and maybe a few cosmetic changes.
I'll post more details to the "Announcements" forum soon, so be on the lookout. -E

 

Search:

Type: Posts; User: roveer

Search: Search took 0.00 seconds.

  1. Re: Routing question on 2 680's that are vpn'd together.

    THAT FIXED IT!!!

    The site 2 only had the main 172 subnet of site 1. It didn't have the 10. subnet. I just added it on site 2's rem enc dom and I can now access that 10 network from site 2.
    ...
  2. Re: Routing question on 2 680's that are vpn'd together.

    I just found another encryption domain in the GUI. This one is called "remote access local encryption domain". It was set to automatic on both routers. Maybe it needs to be set to manual and...
  3. Re: Routing question on 2 680's that are vpn'd together.

    Absolutely. How do I see a "remote encryption domain"? I only see a "local encryption domain" from the GUI so I'm assuming I have to get it from the cli? Can you help with the command. I'm also...
  4. Re: Routing question on 2 680's that are vpn'd together.

    nat is disabled on both sides on the vpn configuration.

    where should I be looking in the logs? The appliance logs usually don't provide much information. I did pull an ike.elg and I do have...
  5. Re: Routing question on 2 680's that are vpn'd together.

    Any ideas what I can/should do next? I did place this subnet into the routers Encryption Domain. Didn't seem to make a difference.
  6. Re: Routing question on 2 680's that are vpn'd together.

    I noticed that too when I was posting the ED. Since I do all the configuring via the gui and the ED is set to manual I'm assuming that it doesn't automatically place any new subnets. I did throw it...
  7. Re: Routing question on 2 680's that are vpn'd together.

    Thanks for the detailed explanation. I'm sure we are probably going to find a mis-configuration. I was pretty lost when I was reading about encryption domains. I did all configuration using the...
  8. Re: Routing question on 2 680's that are vpn'd together.

    Ignore the 192.168.200.0 & 192.168.201.0 networks for site 1, those are other subnets that I was using to separate devices from the 172.16.1.0 network at site 1.

    Site 1
    1173

    Site 2
    1174
  9. Routing question on 2 680's that are vpn'd together.

    So I have 2 680's at 2 different locations. VPN is connecting them together.

    Site 1: Main Network: 172.16.1.1
    Site 1: Secondary Network defined on one of the lan ports: 10.1.1.1

    Site 2: Main...
Results 1 to 9 of 9