CPUG: The Check Point User Group

Resources for the Check Point Community, by the Check Point Community.

Tim Hall has done it again! He has just released the 2nd edition of "Max Power".
Rather than get into details here, I urge you to check out this announcement post.
It's a massive upgrade, and well worth checking out. -E


Results 1 to 2 of 2

Thread: Firewall management source IP address

  1. #1
    Join Date
    Rep Power

    Default Firewall management source IP address

    Hi all,

    We have a 1430 appliance in a branch office, NATed behind a ISP router. This firewall is interconnected to our headquarters with an IPSec VPN and works properly. We are able to manage this gateway over the VPN, using its internal IP address, and we have added exceptions for the SSH and portal ports, so as to be able to access it even when the VPN is down. However, for outgoing management connections (SNMP traps, backups, syslogs), the 1430 firewall use its external interface as the source IP address and this traffic is dropped at our HQ (this private IP address is not in the VPN domain). Is there a way to set the internal interface as the source address for management connections ?


  2. #2
    Join Date
    San Francisco, USA
    Rep Power

    Default Re: Firewall management source IP address

    You might need a NAT rule for that.

Similar Threads

  1. Syslog on VSX, wrong source address
    By sk0yern in forum Check Point on Open Servers
    Replies: 2
    Last Post: 2015-09-28, 01:02
  2. IPsec source address selection
    By shukalo83 in forum IPsec VPN Blade (Virtual Private Networks)
    Replies: 1
    Last Post: 2012-05-23, 13:25
  3. Srv replies with different source IP address
    By Farid in forum SmartDashboard
    Replies: 3
    Last Post: 2008-09-10, 06:55
  4. Source address routing on a UTM-1 2050?
    By impala68 in forum NAT (Network Address Translation)
    Replies: 3
    Last Post: 2008-06-04, 13:11
  5. Nokia firewall gateway: How do i know my management IP address that i am connected to
    By thebrahmos in forum Check Point IP Appliances and IPSO (Formerly Sold By Nokia)
    Replies: 4
    Last Post: 2006-09-20, 10:15


Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts