fir3net
PPS-Firenetbanner-780.5x190-30-03-17

Check Point - SSH Blocked

Problem

You find that your gateway is blocking SSH connections and showing in the logs even though you have the ssh and ssh_version_2 protocols added to your rule.

message_info: SSH version 1.x is not allowed

Reason

On closer inspection when you look at the ssh_version_2 protocol object it says in the comment, Secure Shell, version 1.x block. This service object will block both versions. 

Solution

Add only the ssh service object to your rule, to allow both ssh versions through your gateway.

About the Author

RDonato

R Donato

Rick Donato is the Founder and Chief Editor of Fir3net.com. He currently works as a Principal Network Security Engineer and has a keen interest in automation and the cloud.

You can find Rick on Twitter @f3lix001