CPUG: The Check Point User Group

Resources for the Check Point Community, by the Check Point Community.


I'd like to thank everyone involved for making "The CPUG Challenge" a great success.
We helped a lot of people see and learn a bit more about R80.10, while having some fun.
We will be using this success to try and bring more events to more locations soon. -E

 

Results 1 to 2 of 2

Thread: Firewall management source IP address

  1. #1
    Join Date
    2009-08-22
    Posts
    19
    Rep Power
    0

    Default Firewall management source IP address

    Hi all,

    We have a 1430 appliance in a branch office, NATed behind a ISP router. This firewall is interconnected to our headquarters with an IPSec VPN and works properly. We are able to manage this gateway over the VPN, using its internal IP address, and we have added exceptions for the SSH and portal ports, so as to be able to access it even when the VPN is down. However, for outgoing management connections (SNMP traps, backups, syslogs), the 1430 firewall use its external interface as the source IP address and this traffic is dropped at our HQ (this private IP address is not in the VPN domain). Is there a way to set the internal interface as the source address for management connections ?

    DG

  2. #2
    Join Date
    2006-07-28
    Location
    New Zealand
    Posts
    2,465
    Rep Power
    13

    Default Re: Firewall management source IP address

    You might need a NAT rule for that.

Similar Threads

  1. Syslog on VSX, wrong source address
    By sk0yern in forum Check Point on Open Servers
    Replies: 2
    Last Post: 2015-09-28, 01:02
  2. IPsec source address selection
    By shukalo83 in forum IPsec VPN Blade (Virtual Private Networks)
    Replies: 1
    Last Post: 2012-05-23, 13:25
  3. Srv replies with different source IP address
    By Farid in forum SmartDashboard
    Replies: 3
    Last Post: 2008-09-10, 06:55
  4. Source address routing on a UTM-1 2050?
    By impala68 in forum NAT (Network Address Translation)
    Replies: 3
    Last Post: 2008-06-04, 13:11
  5. Nokia firewall gateway: How do i know my management IP address that i am connected to
    By thebrahmos in forum Check Point IP Appliances and IPSO (Formerly Sold By Nokia)
    Replies: 4
    Last Post: 2006-09-20, 10:15

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •