Noticed a weird issue on one of my Checkpoint clusters. Policy pushes to one of the involved clusters would result in an outage of the VPN tunnel between two locations. I’d had similar, but not identical symptoms, before. Pushing to the other involved cluster didn’t have the same effect. Nothing had changed on an appliance level, but policy changes had been made; all changes were recorded in a change log.
Found that this was caused by my enthusiastic Business Continuity efforts – I’d filled the /opt directory to 79% as a result of not deleting “upgrade_export” files after shipping them off to a backup server. Removing these files (they had been backed up to said server straight after generation, but not deleted from the manager) resulted in successful policy pushes that didn’t cause tunnel outages.
Leave a Reply