Search:

Hello,

As I am reviewing SmartLog, I've noticed that sometimes the source username & username is displayed. And sometimes not.
I was thinking it had something to do with the level of application...

Hello All,

I'm facing the following problem
I have installd an 1100 appliance, locally managed and with the firmware version: Version: R75.20.26 (983003690)

One needs to connect to the...

Hi,

How is it possible to have an overview of the DHCP addresses that have been offered by a firewall running GAIA?
With DHCP server configured on one interface.

In command line, CLISH or ?
...

Too bad it hasn't solved my problem. HFA 25 is also installed on the gateway.
Thank you for sharing your information.

Hello,

I'm having issues with DNS resolving for remote access VPN users that connect remotely to the LAN behind the gateway.
In settings of the VPN, I have added an internal DNS server, so the...

This issue has been solved by itself.
Today we can reach the available bandwidth of the WAN router on the LAN interface of the firewall.

Hello all,

I'm having this issue:
I have freshly installed a new 2200 Gateway appliance with GAIA R76 on it. There are only about 25 rules configured on it.
The router whereto it is connected to...

Hello,

I'm having the following issue:

We have a site-2-site VPN between a watchguard and Checkpoint firewall.
Mostly the connection runs fine, but every so often, the VPN is dropped.

The...

Hello All,

I have recently installed a GAIA R75.40 Cluster HA with two 4600 appliances.
The problem is when I want to retrieve the gateway data of both firewalls in SmartUpdate, on one of the...

NAT traversal is supported on our firewall, I've requested to check the intermediate firewall for the ports you have mentioned.
I'll keep you informed.

No luck, the tunnel doesn't want to come up.
I can only see Phase 1 packets that are being sent by the checkpoint firewall.
I don't see any packets arriving on our firewall from the Zyxel.

I...

I have tried all of your settings, but without any success.
Now the first negotiation stops after 5 packets in Main Mode.

Then I see 3 packets and an authentication failed in MM.

Below You can...

I'll try to adjust the things you mentioned and I'll let you know if it was of any help.
Thanks already for your reactions.

There must be something else that is wrong. The Zyxel firewall keeps giving issues to connect.
The administrator of the Zyxel firewall assured me that the Shared secret is 100% correct.
And I was...

I have changed some settings, and using IKE VIEW, I see 5 pakkets being send in Phase one and than the negotiation stops.
I get an error message: IKE: Phase1 Received Notification from Peer: invalid...

The solution to this issue, was as following:

On both the firewalls, you need to include the public IP of the firewall in the encryption domain.

Checkpoint services explained that the issue was...

Hello all,

I'm having issues with the creation of a VPN tunnel. This site-2-site vpn tunnel should pass data between an Checkpoint GAIA firewall, version R75.40 and a Zyxel, zywall USG 1000. All...

OK, I have found the solution for this issue.

I have configured the remote access community encryption domain to be the the same specific encryption domain of the firewall that the remote access...

Hello,

I'm trying to connect with the Securemote e75.30 client to an R75.40 GAIA firewall.
The user can log on using username and password.

With one computer I don't have any problems at all....

I have migrated from a GAIA R75.40 standalone to GAIA R75.40 distributed setup.
The error messages I receive, concern the QOS and CoreXL, they cannot be activated on the same time.

The firewall...

Hello,

I have migrated from a standalone firewall to a distributed setup, GAIA R75.40.

All went well, but when I want to push a policy set to the firewall, I receive errors from the management...

I have found the solution for this problem.
I adjusted the port settings to Full-duplex 100Mbits on the LAN port and after a reboot everything worked fine.

The clients receive a request time out on the ping.
When trying to add the MAC of the firewall manually in the clients, it still doesn't work.
I don't know anymore what can cause these troubles....

Hello All,

I'm trying to setyp a L2TP VPN connection, but neither with a certificate or a adding a preshared secret in de $FWDIR/conf/l2tp.conf it works.
While checking the logging, I only see...

I have checked the usercenter of Checkpoint and there it shows as following:

"Check Point Safe@Office 1000N Appliance with PowerPack for Unlimited users "

Hello,

I will need to check the licenses on the safe@office.

The machines get an correct IP from the SBS server, because I can ping them correctly from the SBS server, and they show up under...

Hello,

I have installed an Safe@office in a small network, that also contains an Microsoft SBS 2008.
The problem I have is that some computers have access to the internet and some of them don't....

Hello,

I'm having issues with an Safe@office connecting to an Juniper SSG520m firewall.

All phase1 and phase2 negotiations go well, but when the S@O sents an IKE packet, the vpn tunnel gets...

Ok thats all cleared up now. Thanks again for the effort.

One more question, how did you find out the object had the IP you mentioned in your reply?

Well that did the trick, there were indeed two webserver objects being defined as 'web servers'.
Thanks a lot for your answer.

Hello All,

When I want to push a policy to the clustered gateway, I keep receiving the error messages below:

Installation Targets Version Policy Type Details
Firewall-Cluster R70 Network...

fwd is running, cpstart doesn't help either.
now it shows: cannot find pid of vpnd

I have tried to use this command, but I still cannot use the command "vpn debug on".

It's still telling me: cannot signal vpnd: no such process.

Hello All,

I'm having this problem:

When I want to troubleshoot vpn connections, normally you would use:
vpn debug ikeon
vpn debug on
vbn debug ike
...

Hello all,

I have set up a remote access on a firewall R75.40 and on a R70.40, using L2TP VPN.

While trying to connect with L2TP VPN using windows 7 amd64, on some clients the connection is...

Problem solved, there was something wrong on the side of the Cisco firewall.
Thanks for all your time and effort.

The problem has been solved. By disabling the Symantec Network Threat Protection, the topology could be downloaded on port 264.
The connection can now be made.
The only thing that doesn't seem to...

I have tried with both HFA2 and HFA3, but then with visitor mode activated on another port.
I have tested all of these versions on multiple other pc's and it worked without any problems.

It's...

Hello,

I'm having this strange problem.

I'm dealing with R70.1 and an SBOX ngx 65. On this SBOX, there is a guest network on this SBOX 192.168.1.0/24.

I'm trying to setup a connection with...

NAT is indeed disabled in the tunnel.

Hello All,

I have set up a VPN tunnel between these two firewalls.
The configuration on the checkpoint firewall has been done by me.

In the encryption domain I have added one remote subnet and...