The information you are about to copy is INTERNAL! DO NOT share it with anyone outside Check Point.
Define your search:
Search entire support site
Permanent VPN Tunnel between DAIP Gateway and Check Point Security Gateway reported as 'Down' although it is really 'Up'
R80.20, R80.30, R80.40
Platform / Model
Permanent VPN Tunnel between DAIP Gateway and Check Point Security Gateway R80.20 /R80.30 reported as 'Down', although it is really 'Up'
Working Tunnel test packet's Source and Destination addresses change as they go through the kernel chains, but they are changed back to the original addresses when they leave the gateway.
Non-working Tunnel test packets do not switch back to the original addresses.
When the Source and Destination addresses are not switched back to the original addresses, the request and response are handled in different cores.
Drop is seen as due to "According to the policy the packet should not have been decrypted".
Tunnel test requests and replies handled in different instances.
Note: To view this solution you need to
Thanks for your feedback!
Are you sure you want to rate this
SECURE YOUR EVERYTHING
1994-2021 Check Point Software Technologies Ltd. All rights reserved.