Solved

Unable to connect to FW-1 Dashboard with External IP address

Posted on 2009-04-03
6
268 Views
Last Modified: 2013-11-16
I need to remote into FW-1 Dashboard.  Currently I am not able to connect with the external IP address.  Nor can I ssh/https.   Whenever I cpstop/cprestart, I notice a error "VPN-FW-1 stop, Fail to reset VPN-1".  This particular customer has NG FW-1 R55 with Encryption Module for VPN.  I wanted to help them setup a VPN Remote Access for end users.  Any suggestions?
0
Comment
Question by:hotrod_952
  • 3
  • 3
6 Comments
 
LVL 4

Assisted Solution

by:Multipath
Multipath earned 20 total points
ID: 24065804
Do a cplic print and make sure the vpn module is there.  I think your issue is the VPN not coming up which could be due to many things like ip address not matching license or not being licensed.
0
 

Author Comment

by:hotrod_952
ID: 24073953
This particular customer is license for CPFW-ENC-U-NG  which allows you to upgrade to VPN-1 module.  Also, I've verified that the external IP address is licensed.  
0
 
LVL 4

Expert Comment

by:Multipath
ID: 24074050
Are there in messages in the message file when you try to start it?  I am not sure what platform you are on.
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 

Accepted Solution

by:
hotrod_952 earned 0 total points
ID: 24090208
I called Checkpoint User Center and they mention that this particular license is for gateway encryption.  In order for them to have VPN capabilities they must purchase additional licenses.  This explains why after I create the remote access VPN they gateway was accessible from secure remote.
0
 

Author Comment

by:hotrod_952
ID: 24090222
Thanks
0
 
LVL 4

Expert Comment

by:Multipath
ID: 24093291
As I commented in the first reply

"Do a cplic print and make sure the vpn module is there.  I think your issue is the VPN not coming up which could be due to many things like ip address not matching license or not being licensed."

As this was the problem should I not be given the points?
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this tutorial I will show you with short command examples how to obtain a packet footprint of all traffic flowing thru your Juniper device running ScreenOS. I do not know the exact firmware requirement, but I think the fprofile command is availab…
I found an issue or “bug” in the SonicOS platform (the firmware controlling SonicWALL security appliances) that has to do with renaming Default Service Objects, which then causes a portion of the system to become uncontrollable and unstable. BACK…
Two types of users will appreciate AOMEI Backupper Pro: 1 - Those with PCIe drives (and haven't found cloning software that works on them). 2 - Those who want a fast clone of their boot drive (no re-boots needed) and it can clone your drive wh…
Finds all prime numbers in a range requested and places them in a public primes() array. I've demostrated a template size of 30 (2 * 3 * 5) but larger templates can be built such 210  (2 * 3 * 5 * 7) or 2310  (2 * 3 * 5 * 7 * 11). The larger templa…

773 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question