CaringIT
asked on
Exchange 2007 and Checkpoint R76
We have recently migrated from Checkpoint R71.20 on a UTM1 1050 to Checkpoint R75.40 on a Checkpoint 4407. Everything has tested successfully except for the email traffic on this.
The Exchanger server hosts all the services, and works fine on the webmail client - so the rule base appears fine and NAT appears to be working to the server.
However, with the new firewall in (using exactly same rules as the old firewall) running the most recent version of Checkpoint, the Exchange box cannot do DNS, send or receive emails or browse the web.
I have explicity given the server a rule on the firewall to allow it any traffic in and out to test, but this still does not work for email/browsing/dns.
I have turned off the IPS module so it is running truly the same as the previous firewall.
When I swap back to the old firewall, this works as normal.
Any ideas?
The Exchanger server hosts all the services, and works fine on the webmail client - so the rule base appears fine and NAT appears to be working to the server.
However, with the new firewall in (using exactly same rules as the old firewall) running the most recent version of Checkpoint, the Exchange box cannot do DNS, send or receive emails or browse the web.
I have explicity given the server a rule on the firewall to allow it any traffic in and out to test, but this still does not work for email/browsing/dns.
I have turned off the IPS module so it is running truly the same as the previous firewall.
When I swap back to the old firewall, this works as normal.
Any ideas?
What does the smartview tracker show as far as traffic being allowed or blocked from Exchange?
ASKER
From what I can see, all data flows out of the firewall ok, but nothing is coming back. We have also now upgraded to R76 as well as part of this process.
I turned off NAT for the exchange server, and this can browse the internet, make DNS requests, etc as normal. It cannot received email as this is being sent to it's external IP address which is NATed to it.
When I turn the NAT back on, browsing, DNS, etc stops. It cannot received emails, but you can access the OWA service running on the box as normal.
So - it appears to be the NAT causing the issue. I have compared the R71.20 box and R76 and I can see now differences in the rules or the NAT table to cause this.
I turned off NAT for the exchange server, and this can browse the internet, make DNS requests, etc as normal. It cannot received email as this is being sent to it's external IP address which is NATed to it.
When I turn the NAT back on, browsing, DNS, etc stops. It cannot received emails, but you can access the OWA service running on the box as normal.
So - it appears to be the NAT causing the issue. I have compared the R71.20 box and R76 and I can see now differences in the rules or the NAT table to cause this.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
In depth investigations from Checkpoint to resolve