Solved

Unable to connect to FW-1 Dashboard with External IP address

Posted on 2009-04-03
6
270 Views
Last Modified: 2013-11-16
I need to remote into FW-1 Dashboard.  Currently I am not able to connect with the external IP address.  Nor can I ssh/https.   Whenever I cpstop/cprestart, I notice a error "VPN-FW-1 stop, Fail to reset VPN-1".  This particular customer has NG FW-1 R55 with Encryption Module for VPN.  I wanted to help them setup a VPN Remote Access for end users.  Any suggestions?
0
Comment
Question by:hotrod_952
  • 3
  • 3
6 Comments
 
LVL 4

Assisted Solution

by:Multipath
Multipath earned 20 total points
ID: 24065804
Do a cplic print and make sure the vpn module is there.  I think your issue is the VPN not coming up which could be due to many things like ip address not matching license or not being licensed.
0
 

Author Comment

by:hotrod_952
ID: 24073953
This particular customer is license for CPFW-ENC-U-NG  which allows you to upgrade to VPN-1 module.  Also, I've verified that the external IP address is licensed.  
0
 
LVL 4

Expert Comment

by:Multipath
ID: 24074050
Are there in messages in the message file when you try to start it?  I am not sure what platform you are on.
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 

Accepted Solution

by:
hotrod_952 earned 0 total points
ID: 24090208
I called Checkpoint User Center and they mention that this particular license is for gateway encryption.  In order for them to have VPN capabilities they must purchase additional licenses.  This explains why after I create the remote access VPN they gateway was accessible from secure remote.
0
 

Author Comment

by:hotrod_952
ID: 24090222
Thanks
0
 
LVL 4

Expert Comment

by:Multipath
ID: 24093291
As I commented in the first reply

"Do a cplic print and make sure the vpn module is there.  I think your issue is the VPN not coming up which could be due to many things like ip address not matching license or not being licensed."

As this was the problem should I not be given the points?
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

We sought a budget ($5,000) firewall solution that would provide all the performance we needed with no single point of failure.  Hosting a SAAS web application in our datacenter, it was critical that we find a way to keep connectivity up and inbound…
I found an issue or “bug” in the SonicOS platform (the firmware controlling SonicWALL security appliances) that has to do with renaming Default Service Objects, which then causes a portion of the system to become uncontrollable and unstable. BACK…
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

856 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question