Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
491
Views
0
Helpful
1
Replies

Supervisor Desktop/Checkpoint Firewall

a.gooding
Level 5
Level 5

‎02-12-2007 02:28 PM - edited ‎03-14-2019 12:31 AM

Hey,

having a little issue with A supervisor and agent desktop configuration. all clients are behind a checkpoint firewall and the CCM 4.X with co resident 3.5(2) IPCC standard is protected by this firewall. the application traverses the checkpoint to establish connectivity. had to open up a few ports and now the application itself is working. however, i cannot see any desktop agents or phone agents displayed. my security engineer checked and showed me that there is a handshaking issue and packets are no in syn hence dropping the packets causing the loss.

to test we turned off packet inspection on the checkpoint and that worked perfectly. we renabled and created a script on the firewall to enable the ports as documented in the cisco document. however, it seems as though CAD is doing dynamic port assignment so when we specify certain ports, more comes about and are blocked.

Question: how can this be solved without leacing packet insepction off. is this maybe an CAD application issue and if so can i download and update the CAD application to say 6.x or 7. im not seeing anywhere that the application can be downloaded separately.

please advise and thanks in advance.

Labels:
0 Helpful
1 Reply 1

a.gooding
Level 5
Level 5

‎02-13-2007 07:31 AM

Opened a case with TAC

Said that supervisor/agent desktop is not supported with NAT/Firewall.

i could swear i read something stating the opposite.

any ideas?

0 Helpful
Customers Also Viewed These Support Documents