?
Solved

Unable to connect to FW-1 Dashboard with External IP address

Posted on 2009-04-03
6
Medium Priority
?
289 Views
Last Modified: 2013-11-16
I need to remote into FW-1 Dashboard.  Currently I am not able to connect with the external IP address.  Nor can I ssh/https.   Whenever I cpstop/cprestart, I notice a error "VPN-FW-1 stop, Fail to reset VPN-1".  This particular customer has NG FW-1 R55 with Encryption Module for VPN.  I wanted to help them setup a VPN Remote Access for end users.  Any suggestions?
0
Comment
Question by:hotrod_952
  • 3
  • 3
6 Comments
 
LVL 4

Assisted Solution

by:Multipath
Multipath earned 80 total points
ID: 24065804
Do a cplic print and make sure the vpn module is there.  I think your issue is the VPN not coming up which could be due to many things like ip address not matching license or not being licensed.
0
 

Author Comment

by:hotrod_952
ID: 24073953
This particular customer is license for CPFW-ENC-U-NG  which allows you to upgrade to VPN-1 module.  Also, I've verified that the external IP address is licensed.  
0
 
LVL 4

Expert Comment

by:Multipath
ID: 24074050
Are there in messages in the message file when you try to start it?  I am not sure what platform you are on.
0
Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

 

Accepted Solution

by:
hotrod_952 earned 0 total points
ID: 24090208
I called Checkpoint User Center and they mention that this particular license is for gateway encryption.  In order for them to have VPN capabilities they must purchase additional licenses.  This explains why after I create the remote access VPN they gateway was accessible from secure remote.
0
 

Author Comment

by:hotrod_952
ID: 24090222
Thanks
0
 
LVL 4

Expert Comment

by:Multipath
ID: 24093291
As I commented in the first reply

"Do a cplic print and make sure the vpn module is there.  I think your issue is the VPN not coming up which could be due to many things like ip address not matching license or not being licensed."

As this was the problem should I not be given the points?
0

Featured Post

Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Occasionally, we encounter connectivity issues that appear to be isolated to cable internet service.  The issues we typically encountered were reset errors within Internet Explorer when accessing web sites or continually dropped or failing VPN conne…
To setup a SonicWALL for policy based routing to be used with the Websense Content Gateway there are several steps that need to be completed. Below is a rough guide for accomplishing this. One thing of note is this guide is intended to assist in the…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
As many of you are aware about Scanpst.exe utility which is owned by Microsoft itself to repair inaccessible or damaged PST files, but the question is do you really think Scanpst.exe is capable to repair all sorts of PST related corruption issues?
Suggested Courses
Course of the Month8 days, 11 hours left to enroll

621 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question