Cisco Client VPN / Checkpoint Gateway

NoWittyName · May 27, 2009

I am in the process of migrating our firewalls and am having problems with the Cisco ASA5510 VPN Clients not routing back when the default gateway is set to the new Checkpoint UTM1-270. What I need is for the Cisco VPN clients to connect to servers whos default gateway is a Checkpoint box. I already have a similar config working with our older firewall which is being replaced.

If I attempt to ping a server (whos default gateway is the Checkpoint box) from the Cisco VPN client, I get an error on the checkpoint firewall
"ICMP Reply does not match a previous request."

Both boxes are on the same internet connection

Can anyone assist?

PS: not great on firewalls/routing etc......

Master of Disaster.....Recovery

NoWittyName · May 28, 2009

I have fixed this myself by adding a "route add" statement into each server which the VPN users connect to. All the VPN user connect on their own subnet so I routed all the '11.x' traffic back to the originating VPN router

Master of Disaster.....Recovery

Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Cisco Client VPN / Checkpoint Gateway

NoWittyName

Technical User

NoWittyName

Technical User

Similar threads

Part and Inventory Search

Sponsor