Professional Documents
Culture Documents
R73
Release Notes
7 July 2010
Important Information
Latest Version
The latest version of this document is at:
http://supportcontent.checkpoint.com/documentation_download?ID=10651
For additional technical information visit Check Point Support Center (http://supportcenter.checkpoint.com).
Revision History
Date
Description
Dec 2009
Initial version
7 July 2010
Feedback
Check Point is engaged in a continuous effort to improve its documentation.
Please help us by sending your comments
(mailto:cp_techpub_feedback@checkpoint.com?subject=Feedback on Endpoint Connect R73 Release
Notes).
Contents
Important Information .............................................................................................3
Introduction .............................................................................................................5
What's New ......................................................................................................... 5
Supported Platforms ............................................................................................ 5
Installation ...............................................................................................................6
Installing the Client .............................................................................................. 6
Updating the Endpoint Connect Version on the Gateway .................................... 6
VPN-1 Gateway .............................................................................................. 6
Connectra Gateway ........................................................................................ 6
Restoring the Original Endpoint Connect Version ................................................ 6
New MEP (Multiple Entry Point) Mode ...................................................................8
Known Limitations ..................................................................................................9
What's New
Introduction
Endpoint Connect is Check Points lightweight remote access client. Designed for reliable connectivity and
maximum usability, Endpoint Connect provides mobile users with seamless,(IPSec) VPN connectivity to
corporate network resources and information. Endpoint scanning capabilities check for malware and ensure
compliance with corporate security policies before network access is granted.
The Endpoint Connect client works transparently with:
What's New
In this release of Check Point Endpoint Connect:
Supported Platforms
The following Windows platforms are supported:
Introduction
Page 5
Installation
Installing the Client
To install the client on Windows:
Download Check_Point_Endpoint_Connect_R73_For_Windows_835000022.msi and run it.
VPN-1 Gateway
Endpoint Connect is supported on VPN-1 gateway NGX R65 HFA 40 and higher (including R70).
Note - In addition to replacing the files on the gateway, you must make sure that the
gateway is properly configured to work with Endpoint Connect. For information on
configuring gateways to work with Endpoint Connect, refer to Endpoint Connect
Administration Guide http://downloads.checkpoint.com/dc/download.htm?ID=8631.
Connectra Gateway
To update the Endpoint Connect version on the gateway:
1. Backup the files trac.cab and trac_ver.txt in the $CVPNDIR/htdocs/SNX/CSHELL directory.
2. Download the file:
Check_Point_Endpoint_Connect_R73_For_Windows_B835000022.cab
3. Place the file in the $CVPNDIR/htdocs/SNX/CSHELL directory and rename it to: trac.cab
4. Run chmod 750 TRAC.cab to make sure the file has the correct permissions.
5. Edit the file trac_ver.txt by changing the build number inside to the new build number:
835000022
6. Install policy on the gateway.
Page 6
Installation
Page 7
dns_base. If this value is selected, Endpoint Connect resolves gateway IP addresses according to
DNS Geo Clustering
first_to_respond. If this value is selected, Endpoint Connectprobes all gateways on the list and
builds a new list according to response time. The first gateway to respond becomes the first gateway
on the list.
primary_backup. If this value is selected, Endpoint Connect works sequentially through the list,
attempting to connect to the first IP address, then the second, and so on.
load_sharing. If this value is selected, Endpoint Connect randomly tries a gateway on the list. If the
attempt fails, Endpoint Connectrandomly selects the next address from those remaining on the list.
4. Manually add the ips_of_gws_in_mep attribute using the following syntax:
:ips_of_gws_in_mep (
:gateway (
:default (192.168.53.220À.168.53.133&#)
)
)
This is the list of IP addresses the client should try according to the chosen MEP method. Note that:
Page 8
Known Limitations
00531067 - When renewing a CAPI certificate, the former one will be displayed until the user will re-select
the certificate.
00523576 - Users who installed the EA client are required to uninstall it and reboot prior to installing the GA
client
Known Limitations
Page 9