Solved

CheckPoint - DashBoard "you are defined as a GUI client" ?

Posted on 2008-10-06
7
5,702 Views
Last Modified: 2013-11-16
I am trying to create a lab enviroment for CheckPoint NGX R65

I have a PC, with checkpoint installed (VPN-1 UTM)
Then i install on a second pc the SmartCenter & SmartDashBoard

To SmartCenter:
i install the academic licence from the checkpoint site,then i add as admin my machine, apply setting and reboot
Same behavior appears if i dont install any licence.

After reboot i try to access firewall through SmartDashBoard.

However i cant because i get the error message:
Connection cant be initiated
Please make sure that the server "10.19.x.x" is up and running and that you are defined as a GUI client

SmartDashBoard has connectivity with checpoint fiewall (ping are ok)
Are on the same lan = no firewall

Any ideas?
0
Comment
Question by:ampranti
  • 4
  • 2
7 Comments
 
LVL 10

Author Comment

by:ampranti
Comment Utility
Some steps more:

After the above point i connect to https://<firewall-ip> , and configure the firewall, it reboots sucesfully but still i cant connect, with the same error.

Any ideas?


Thanks


0
 
LVL 4

Expert Comment

by:Interserv
Comment Utility
I assume you have a stealth rule implemented?

Do you have a rule before your stealth rule that allows your computer to access the FW?
0
 
LVL 10

Author Comment

by:ampranti
Comment Utility
I dont have any policy installed as i cant access the firewall after installation.

By default the firewall has any policy applied?
0
How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

 
LVL 10

Author Comment

by:ampranti
Comment Utility
The logs created after the last reboot are attached (logs.txt)
I dont see any refuse for my attempt.


Moreover, i cant ssh to the security gateway from the lab pc that has installed SmartDashBoard. But i can ssh from my desktop!





logs.txt
0
 
LVL 14

Accepted Solution

by:
grimkin earned 500 total points
Comment Utility
If I've read your description right then the SmartCenter is installed on your own PC not on the firewall module so the machine you need to connect to is your local box - put in either 127.0.0.1 as the SmartCenter IP or else the local IP address of your box in the intial SmartDashboard window.

This should bring you up the GUI where you can configure your rules and then push the policy to your firewall module.
0
 
LVL 10

Author Closing Comment

by:ampranti
Comment Utility
Damn!!! I am used to cisco SDM :)
0
 
LVL 14

Expert Comment

by:grimkin
Comment Utility
Glad it worked for you :-)
0

Featured Post

Find Ransomware Secrets With All-Source Analysis

Ransomware has become a major concern for organizations; its prevalence has grown due to past successes achieved by threat actors. While each ransomware variant is different, we’ve seen some common tactics and trends used among the authors of the malware.

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
Changes to my firewall 9 55
Stateful firewall thoughput 1 42
Unblock IP Address in Sonicwall 3 69
Land attack dropped sonicwall 4 461
Do you have a windows based Checkpoint SmartCenter for centralized Checkpoint management?  Have you ever backed up the firewall policy residing on the SmartCenter?  If you have then you know the hassles of connecting to the server, doing an upgrade_…
The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
This video shows how to remove a single email address from the Outlook 2010 Auto Suggestion memory. NOTE: For Outlook 2016 and 2013 perform the exact same steps. Open a new email: Click the New email button in Outlook. Start typing the address: …

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now