CPUG: The Check Point User Group

Resources for the Check Point Community, by the Check Point Community.


Tim Hall has done it again! He has just released the 2nd edition of "Max Power".
Rather than get into details here, I urge you to check out this announcement post.
It's a massive upgrade, and well worth checking out. -E

 

Results 1 to 3 of 3

Thread: Intervlan Routing configuration on checkpoint

  1. #1
    Join Date
    2019-04-25
    Posts
    1
    Rep Power
    0

    Default Intervlan Routing configuration on checkpoint

    Hello,

    I am facing the issue that I have created 2 VLANS(20,30) on the switch and I trunk the switch port and connected to the checkpoint @ eth1 port on which i created two subinterfaces i.e eth1.20,eth1.30 and assigned the ips on them(vlan20-192.168.20.1 and for Vlan30-192.168.30.1) and i allowed everything in the policy on checkpoint.

    But I am unable to ping the gateway from the end PC's and I did not get any traffic on the view tracker, There is anything else configuration I need to do on the checkpoint end ?, because when I created the subinterfaces on the router and connect the router to the same switch trunk port everything works fine.

  2. #2
    Join Date
    2007-03-30
    Location
    DFW, TX
    Posts
    306
    Rep Power
    13

    Default Re: Intervlan Routing configuration on checkpoint

    Have you added the interfaces to the firewall object's Topology table in SmartDashboard (pre-R80) or SmartConsole (R80+)?
    Zimmie

  3. #3
    Join Date
    2007-06-04
    Posts
    3,301
    Rep Power
    17

    Default Re: Intervlan Routing configuration on checkpoint

    When you do a tcpdump on the eth1.20 or eth1.30 sub-interfaces do you see the traffic arriving.

    I am presuming here that defined the interfaces in Gaia OS, then updated the Topology with those Interfaces in the Check Point object representing the Gateway.

    Also that the rules permitting the Ping is actually above the Stealth Rule blocking traffic to the Gateway itself.

Similar Threads

  1. DPD configuration between checkpoint and fortigate
    By ajit_matharu in forum R77.30
    Replies: 1
    Last Post: 2017-12-19, 04:32
  2. Intervlan routing and Rule 0
    By rgcazza in forum Check Point UTM-1 Edge Appliances
    Replies: 2
    Last Post: 2011-02-18, 11:16
  3. Replies: 6
    Last Post: 2009-03-17, 12:10
  4. Checkpoint FW-1 NG 5.x Configuration Assistance
    By rmalghan in forum Installing And Upgrading
    Replies: 0
    Last Post: 2006-10-13, 08:14
  5. Configuration problems for a checkpoint NG
    By mcatanoiu in forum Miscellaneous
    Replies: 2
    Last Post: 2005-12-15, 09:48

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •