Exchange 2007 and Checkpoint R76
Posted on 2013-06-01
We have recently migrated from Checkpoint R71.20 on a UTM1 1050 to Checkpoint R75.40 on a Checkpoint 4407. Everything has tested successfully except for the email traffic on this.
The Exchanger server hosts all the services, and works fine on the webmail client - so the rule base appears fine and NAT appears to be working to the server.
However, with the new firewall in (using exactly same rules as the old firewall) running the most recent version of Checkpoint, the Exchange box cannot do DNS, send or receive emails or browse the web.
I have explicity given the server a rule on the firewall to allow it any traffic in and out to test, but this still does not work for email/browsing/dns.
I have turned off the IPS module so it is running truly the same as the previous firewall.
When I swap back to the old firewall, this works as normal.