CPUG: The Check Point User Group

Resources for the Check Point Community, by the Check Point Community.


First, I hope you're all well and staying safe.
Second, I want to give a "heads up" that you should see more activity here shortly, and maybe a few cosmetic changes.
I'll post more details to the "Announcements" forum soon, so be on the lookout. -E

 

Search:

Type: Posts; User: MrKindell

Search: Search took 0.00 seconds.

  1. Re: Cant reach resorses via static IPsec over remote VPN

    I found this in the administration guide

    "To manually configure a local encryption domain for remote access users only:
    The local encryption domains are the internal networks accessible by...
  2. Re: Cant reach resorses via static IPsec over remote VPN

    Did you manage to test?

    So I should add their LAN subnet to the encryption domain? Not the subnet the Remote VPN client gets or the subnet on the other side of the IPsec tunnel?

    Thanks for your...
  3. Re: Cant reach resorses via static IPsec over remote VPN

    Thanks for your answer.

    If I go to advanced settings in the Remote Access menu I can check a box that says "Route internet traffic from connected clients through this gateway" and below that it...
  4. Cant reach resorses via static IPsec over remote VPN

    Hi!

    Please note that this is a localy manage checkpoint GW. It is configured and managed via embedded Gaia (WebUI) and not via smart dashboard!

    I have set up a checkpoint 790 with a static...
  5. Re: Use SFP port on a 1490 as the WAN interface?

    Thanks!
    Now I only need to find the right sfp module :)
  6. Re: Use SFP port on a 1490 as the WAN interface?

    Just to be clear. I can use the 1490 GW's SFP port for the WAN connection even if it is named DMZ in the spec?
    Note! It will be manage locally wit the embedded Gaia. No smart console etc.

    Thanks...
  7. Use SFP port on a 1490 as the WAN interface?

    Hi!

    Have a customer that has a Unifi Edge Router today that we will change to a CheckPoint 1490 GW.
    They have a SFP connection from there ISP today that is connected directly to the Edge Router....
  8. Replies
    2
    Views
    1,118

    Re: Localy manage GW and 2 factor VPN

    Thanks for your answer!
    Unfortunately this will be a local manage GW with embedded Gaia. So I will not have any smart console etc. Only the web gui of the gateway.

    As I see it it would work if I...
  9. Replies
    2
    Views
    1,118

    Localy manage GW and 2 factor VPN

    Hi!

    I new customer contacted me today and wanted help to implement a VPN for them.

    Today they have a Unifi EdgeRouter with a static VPN to there Azure servers.
    They want to be able to VPN from...
  10. Re: cant access webUI interface on remote GW over IPSEC

    I do use the local IP.

    If I set the IPS to Typical instead of Strict it does work.

    I also found this:...
  11. Re: cant access webUI interface on remote GW over IPSEC

    Thanks!

    I was 100% sure I put the network in for remote administration but it was an old network so yes the VPN network was missed. Thanks!
    BUT now the IPS is blocking me out.
    Still gets to the...
  12. cant access webUI interface on remote GW over IPSEC

    Hi!

    Have an IPSEC setup between two localy manage 1430 Gateways.
    The tunnel is up and works fine. I can ping the GWs local address.
    I can access the remote printers WebUI but I cant access the...
  13. IPsec between local manage 1430 and virtual IPFire firewall

    Hi!

    Hope you can help me out with this one.
    I need to set up a IPsec VPN between a IPfire firewall and a localy manage CheckPoint 1430 gateway.

    Problem is that the terminology on both sides...
  14. Replies
    2
    Views
    1,123

    Re: Strict mode. Autorules

    Thanks for your reply.

    Dont know if I got you right here, but all other things in undesired applications that I want to be blocked then?
    I cant add all this one by on in my own rules?

    The...
  15. Replies
    2
    Views
    1,123

    Strict mode. Autorules

    Hi!

    I have a 1430 appliance that I manage locally and I am a bit confused about running it in strict mode with this "stupid" auto generated rules.
    Auto rule no 1 block everything outgoing.
    Auto...
  16. VPN in to appliance with 2 factor authentication

    Hi!

    I am setting up a user in my appliance (1430) that will be used to access the gateway remote.
    But I dont want to use only username and password for security reasons.

    So what apps/tokens...
  17. Re: Drop rule and create a new Zone. Singel managed 1430 Appliance

    Humm ok. I though I needed a MDS if I want to handle all gateways with separately policy settings etc ?
    Anyways this is a bit OT I think, is it OK to give you a PM?

    Thanks in advanced!
  18. Re: Drop rule and create a new Zone. Singel managed 1430 Appliance

    Thanks for the answer.

    I will try some things out. Its not in production yet so.

    Yes I could use an SMS server and work with Smart Dashboard with this appliance. Thats someting I whould prefer....
  19. Re: Drop rule and create a new Zone. Singel managed 1430 Appliance

    Hi! Thanks for your answer.

    Yest strict mode blocks everything. Thanks!
    But I cant choose drop instead of block and I dont like the default rules it creates for me.
    I think they are in the way...
  20. Thread: SMP

    by MrKindell
    Replies
    0
    Views
    1,575

    SMP

    Hi! Did not know where to put this but.

    I just stared to look in to the SMP portal.
    https://smbmgmtservice.checkpoint.com

    I have been in contact with CheckPoint and they have got me a...
  21. Drop rule and create a new zone in firewall. 1430 Appliance.

    Hi!

    I have just fired up my CP 1430 Firewall.
    I have worked a little with enterpirse envirements before (SMS and Smart Dashboard)

    But now I manage this and future CheckPoint firewalls for...
  22. Drop rule and create a new Zone. Singel managed 1430 Appliance

    Hi!

    I have just fired up my CP 1430 Firewall.
    I have worked a little with enterpirse envirements before (SMS and Smart Dashboard)

    But now I manage this and future CheckPoint firewalls for...
  23. Thread: MDM

    by MrKindell
    Replies
    1
    Views
    1,897

    MDM

    Hi!

    I am new here and pretty new to check point as well. But I love there products.
    I have some working experience (R77.20) and I have taken a cource like 9 months ago.

    I have a small IT...
  24. Replies
    2
    Views
    2,255

    Re: Hi! I am new here!

    Thanks mcnallym!

    Thats good info.

    Feels like an MDS is what I need.

    I will look at the forum for more info about that.

    BR
    Eric
  25. Replies
    2
    Views
    2,255

    Hi! I am new here!

    Hi!

    I am new here and also pretty new to Checkpoint firewalls.
    I have worked a little bit with CheckPoint Smart Dashboard and I have taken a CCSA course. Will take my cert when I got some more...
Results 1 to 25 of 25