Endpoint Security VPN for Mac



Similar documents
Endpoint Security VPN for Mac

Remote Access Clients for Windows

Endpoint Security VPN for Windows 32-bit/64-bit

How To Backup a SmartCenter

R75. Installation and Upgrade Guide

Endpoint Security VPN for Mac

Multi-Domain Security Management

Security Gateway R75. for Amazon VPC. Getting Started Guide

Remote Access Clients for Windows 32-bit/64-bit

DDoS Protection on the Security Gateway

Security Gateway Virtual Appliance R75.40

DIGIPASS Authentication for Check Point Security Gateways

Mobile Access R Administration Guide. 13 August Classification: [Protected]

Security Gateway for OpenStack

Installing and Configuring vcenter Multi-Hypervisor Manager

Endpoint Security Client for Mac

Check Point VPN-1 SecureClient for Mac OS X Release Notes November 1, 2004

Release Notes for Version

ez Agent Administrator s Guide

Release Notes for Websense Web Endpoint (32- and 64-bit OS)

Desktop Release Notes. Desktop Release Notes 5.2.1

Network Services Internet VPN

SSL Network Extender R71. Release Notes

Check Point FW-1/VPN-1 NG/FP3

Mobile Access. R77 Versions. Administration Guide. 6 May Classification: [Protected]

Release Version 4.1 The 2X Software Server Based Computing Guide

DameWare Server. Administrator Guide

Chapter 6 Configuring the SSL VPN Tunnel Client and Port Forwarding

Table of Contents. Cisco Cisco VPN Client FAQ

Embarcadero Performance Center 2.7 Installation Guide

Remote Filtering Software

Networking Best Practices Guide. Version 6.5

WS_FTP Server. User s Guide. Software Version 3.1. Ipswitch, Inc.

Kaseya Server Instal ation User Guide June 6, 2008

User Manual. Onsight Management Suite Version 5.1. Another Innovation by Librestream

Release Version 3 The 2X Software Server Based Computing Guide

Check Point NGX VoIP Hotfix-1 Release Notes June 2006

WatchGuard Mobile User VPN Guide

Check Point Security Administrator R70

Remote Access Clients for Windows 32/64-bit

Checkpoint Check Point Provider-1 NGX (v4) Practice Test. Version 2.1

vsphere Upgrade vsphere 6.0 EN

Sharp Remote Device Manager (SRDM) Server Software Setup Guide

Cloud Attached Storage

How to Tunnel Remote Desktop Through SSH on a Windows Computer

Cloud Attached Storage 5.0

Managing Multi-Hypervisor Environments with vcenter Server

Endpoint Security Client

VPN CLIENT ADMINISTRATOR S GUIDE

A Guide to New Features in Propalms OneGate 4.0

PANO MANAGER CONNECTOR FOR SCVMM& HYPER-V

HP A-IMC Firewall Manager

HP IMC Firewall Manager

Check Point UserAuthority Guide. Version NGX R61

McAfee SMC Installation Guide 5.7. Security Management Center

Global VPN Client Getting Started Guide

CORE Enterprise on a WAN

Introduction to Endpoint Security

How To Manage Storage With Novell Storage Manager 3.X For Active Directory

Easy and Secure Remote Access with Cisco QuickVPN

Proof of Concept Guide

Application Control and URL Filtering

Mobile Configuration Profiles for ios Devices Technical Note

Upgrade Guide. CA Application Delivery Analysis 10.1

BorderGuard Client. Version 4.4. November 2013

Lync for Mac 2011 Deployment Guide

McAfee Firewall for Linux 8.0.0

Installing and Configuring vcloud Connector

WhatsUp Gold v16.3 Installation and Configuration Guide

NETASQ SSO Agent Installation and deployment

Citrix Access Gateway Plug-in for Windows User Guide

Remote Desktop Gateway. Accessing a Campus Managed Device (Windows Only) from home.

TECHNICAL WHITE PAPER. Symantec pcanywhere Security Recommendations

Allworx Installation Course

Sophos Enterprise Console policy setup guide. Product version: 5.2

Direct or Transparent Proxy?

SmartView Monitor. R77 Versions. Administration Guide. 21 May Classification: [Protected]

LogMeIn Hamachi. Getting Started Guide

Parallels Plesk Panel. VPN Module for Parallels Plesk Panel 10 for Linux/Unix Administrator's Guide. Revision 1.0

Polycom RealPresence Access Director System

VPN-1 VE Evaluation Guide

Understanding the Cisco VPN Client

Getting Started with Symantec Endpoint Protection

PGP Desktop Version 10.2 for Mac OS X Maintenance Pack Release Notes

Omniquad Exchange Archiving

AG MacOS Standalone Array Client Administration Guide

Check Point QoS. Administration Guide Version R70

How To Install Sedar On A Workstation

Appliance Comparison Chart

Windows 7, Enterprise Desktop Support Technician

Quick Start Guide. Cerberus FTP is distributed in Canada through C&C Software. Visit us today at

SANGFOR SSL VPN. Quick Start Guide

Ipswitch WS_FTP Server

LifeSize Control Installation Guide

CONNECTING TO DEPARTMENT OF COMPUTER SCIENCE SERVERS BOTH FROM ON AND OFF CAMPUS USING TUNNELING, PuTTY, AND VNC Client Utilities

Setting Up a Unisphere Management Station for the VNX Series P/N Revision A01 January 5, 2010

CA VPN Client. User Guide for Windows

Windows 7, Enterprise Desktop Support Technician Course 50331: 5 days; Instructor-led

Transcription:

Security VPN for Mac E80.41 Release Notes 16 January 2013 Classification: [Protected]

2013 Check Point Software Technologies Ltd. All rights reserved. This product and related documentation are protected by copyright and distributed under licensing restricting their use, copying, distribution, and decompilation. No part of this product or related documentation may be reproduced in any form or by any means without prior written authorization of Check Point. While every precaution has been taken in the preparation of this book, Check Point assumes no responsibility for errors or omissions. This publication and features described herein are subject to change without notice. RESTRICTED RIGHTS LEGEND: Use, duplication, or disclosure by the government is subject to restrictions as set forth in subparagraph (c)(1)(ii) of the Rights in Technical Data and Computer Software clause at DFARS 252.227-7013 and FAR 52.227-19. TRADEMARKS: Refer to the Copyright page (http://www.checkpoint.com/copyright.html) for a list of our trademarks. Refer to the Third Party copyright notices (http://www.checkpoint.com/3rd_party_copyright.html) for a list of relevant copyrights and third-party licenses. Important Information Latest Software We recommend that you install the most recent software release to stay up-to-date with the latest functional improvements, stability fixes, security enhancements and protection against new and evolving attacks. Latest Documentation The latest version of this document is at: http://supportcontent.checkpoint.com/documentation_download?id=22002 For additional technical information, visit the Check Point Support Center (http://supportcenter.checkpoint.com). For more about this release, see the E80.41 home page (http://supportcontent.checkpoint.com/solutions?id=sk91181). Revision History Date Description 16 January 2013 First release of this document Feedback Check Point is engaged in a continuous effort to improve its documentation. Please help us by sending your comments (mailto:cp_techpub_feedback@checkpoint.com?subject=feedback on Security VPN for Mac E80.41 Release Notes).

Contents Important Information... 2 Introduction... 4 What's New... 4 Migrating from SecureClient... 4 Remote Access Clients Comparison... 5 System Requirements... 7 Client Requirements... 7 VPN Gateway Requirements... 7 Build Numbers... 7 Supported Upgrades... 7 Installation and Configuration... 8 Installing the Security VPN Hotfix... 8 Uninstalling this Hotfix... 9 Installing the Client... 9 Uninstalling the Client... 9 Automatic Upgrade from the Gateway... 9 Known Limitations and Resolved Issues... 10

Introduction Introduction E80.41 is a hotfix for E75 Security VPN for Mac. For a list of the new features included in E75, see the Security VPN for Mac Release Notes (http://supportcontent.checkpoint.com/solutions?id=sk69622). What's New This release provides enhancements and resolves issue for Security VPN for Mac E75. This release aligns Security VPN for Mac with the Mac Security client that is part of the full Security E80.41 Suite. You can upgrade from this release to Security E80.41 and higher for more Security functionality. Migrating from SecureClient Security VPN for Mac is not compatible with SecureClient for Mac. You must uninstall SecureClient before you install Security VPN. Security VPN for Mac Release Notes E80.41 4

Remote Access Clients Comparison Remote Access Clients Comparison Feature Security VPN for Windows Check Point Mobile for Windows SecuRemote Security VPN for Mac Description Client Purpose Secure connectivity with desktop firewall & compliance checks Secure connectivity & compliance checks Basic secure connectivity Secure connectivity with desktop firewall Replaces Client SecureClient NGX R60 Connect R73 SecuRemote NGX R60 SecureClient for Mac Connect R73 IPSEC VPN Tunnel Security Compliance Check (SCV) Integrated Desktop Firewall Split Tunneling Hub Mode Dynamic Optimization of Connection Method Multi Entry Point (MEP) Secondary Connect Office Mode IP Manual only All traffic travels through a secure VPN tunnel. Monitor remote computers to confirm that the configuration complies with organization's security policy. Integrated endpoint firewall centrally managed from a Security Management Server Encrypt only traffic targeted to the VPN tunnel. Pass all connections through the gateway. When NAT-T connectivity is not possible, automatically connect over TCP port 443 (HTTPS port). Client seamlessly connects to an alternative site when the primary site is not available. End-users can connect once and get transparent access to resources, regardless of their location. Each VPN client is assigned an IP from the internal office network. Security VPN for Mac Release Notes E80.41 5

Remote Access Clients Comparison Feature Security VPN for Windows Check Point Mobile for Windows SecuRemote Security VPN for Mac Description Back Connection Protocols Support protocols where the client sends its IP to the server and the server initiates a connection back to the client using the IP it receives. These protocols include: Active FTP, X11, some VoIP protocols. Auto Connect and Location Awareness Intelligently detect if the user is outside the internal office network, and automatically connect as required. If the client senses that it is inside the internal network, the VPN connection is terminated. Roaming Tunnel and connections remain active while roaming between networks. Always Connected VPN connection is established whenever the client exits the internal network. Secure Domain Logon (SDL) VPN tunnel and domain connectivity is established as part of Windows login allowing GPO and install scripts to execute on remote machines. Split DNS Resolves internal names with the SecuRemote DNS Server configuration. Hotspot Detection and Registration Detection only Makes it easier for users to find and register with hot spots to connect to the VPN through local portals (such as in hotels or airports). Secure Authentication API (SAA) Allows third party-extensions to the standard authentication schemes. This includes 3-factor and biometrics authentication. Required Licenses On Gateway: IPsec VPN Blade On Management: Container & VPN Blade for all installed endpoints IPsec VPN Blade and Mobile Access Blade (based on concurrent connections) On Gateway: IPsec VPN Blade for an unlimited number of connections On Gateway: IPsec VPN Blade On Management: Container & VPN Blade for all installed endpoints Security VPN for Mac Release Notes E80.41 6

System Requirements System Requirements Read all requirements carefully. Client Requirements Security VPN E80.41 can be installed on these Mac platforms in 32 and 64 bit: Mac OS X 10.6 Snow Leopard Mac OS X 10.7 Lion Mac OS X 10.8 Mountain Lion VPN Gateway Requirements For remote VPN access by the client: Check Point Version Version Supported for E80.41 Security Gateway R71 Security Gateway R75 VSX R65 R71.30 and higher R75 and higher Not Supported VSX R67 R67.10 UTM-1 Edge 8.2.33 Build Numbers The build number for this release is 835017207. Supported Upgrades Upgrade to this release from: Security VPN for Mac E75 Security VPN for Mac E75.01 You can upgrade FROM this release TO Security E80.41 and higher for more Security blades and functionality. Security VPN for Mac Release Notes E80.41 7

Installation and Configuration Installation and Configuration Before you install this release, make sure that you have supported gateways, and if necessary, a required Hotfix. If Visitor mode is configured on port 443 and WebUI is enabled on the gateway, the WebUI must listen on a port other than 443. Otherwise, Security VPN cannot connect. Installing the Security VPN Hotfix Install the Security VPN E80.41 Hotfix on gateways or standalone, self-managed gateway deployments. In a Multi-Domain Security Management environment install the Hotfix on the Multi-Domain Server. If you have R71.30 and higher or R75 and higher installed on a gateway, Security Management Server, or Multi-Domain Server, it can support Security VPN. It is not necessary to install a Hotfix. See the System Requirements section of the Release Notes for exact details. For other supported gateway versions, install the Hotfix. (http://supportcontent.checkpoint.com/solutions?id=sk69622) Before you install the Hotfix: This Hotfix has possible conflicts with other installed Hotfixes. If you can, it is safest to uninstall all Hotfixes installed on the Security Management Server or gateways. See Uninstalling a Hotfix ("Uninstalling this Hotfix" on page 9). If you cannot uninstall a Hotfix, contact Check Point Technical Support. To install the Hotfix on a Security Gateway or Security Management Server: 1. Download the Hotfix. 2. Copy the Hotfix package to the Security Gateway or Security Management Server. 3. Run the Hotfix: On SecurePlatform, Disk-based IPSO, and Solaris: a) tar -zxvf <name_of_file>.tgz b)./unixinstallscript On Windows platforms: double-click the installation file and follow the instructions. 4. Reboot the Security Gateway or Security Management Server. To install the Hotfix on a Multi-Domain Server: 1. On the Multi-Domain Server, run: mdsenv. 2. Download the Security VPN Hotfix (http://supportcontent.checkpoint.com/solutions?id=sk69622) to the Multi-Domain Server. 3. Run the Hotfix on SecurePlatform and Solaris: a) tar -zxvf <name_of_file>.tgz b)./unixinstallscript 4. Follow the on-screen instructions. 5. Reboot the Multi-Domain Server. Security VPN for Mac Release Notes E80.41 8

Installation and Configuration Uninstalling this Hotfix If you need to uninstall a Hotfix, use this procedure. To uninstall a Hotfix from a gateway: 1. Go to the installation directory: cd /opt/cpsuite-version/ For example, the installation directory on an R70.40 gateway is: /opt/cpsuite-r70/ 2. Run:./uninstall_<name_of_original_Hotfix_file> The name of the Hotfix is different for gateway version and for Hotfix functionality. 3. Enter y at the prompt. 4. Reboot the Security Gateway. Installing the Client Install the client on a supported Mac platform booted in 64-bit or 32-bit mode. To install Security VPN for Mac on a client computer: 1. Download the _Security_VPN.dmg file to the client computer. 2. Double-click the file. After the disk image mounts to the file system, a Finder window opens with the contents of the package. 3. Double-click the _Security_VPN.pkg file to start the installation. 4. Follow the on-screen instructions. Uninstalling the Client If necessary, you can uninstall the Security VPN client. To install Security VPN for Mac from a client computer: 1. Double-click the _Security_VPN.dmg file. After the disk image mounts to the file system, a Finder window opens with the contents of the package. 2. Double-click the Uninstaller to start the uninstall process. 3. Do the on-screen instructions. Automatic Upgrade from the Gateway You can configure your Security Gateway to automatically upgrade Remote Access VPN clients the next time that they connect. When this occurs, the Security Gateway downloads the applicable package to the client. users must have administrator permissions to install an upgrade. You can have packages for different versions of the VPN client for Windows and Mac OS X on your Security Gateway at the same time. For example, you can have E75.01 for Mac and E75.20 for Windows at the same time. To set up a gateway to automatically install client upgrades: 1. Download Security VPN E80.41 Automatic Upgrade file. 2. Rename the _Security_VPN.pkg, _Security_VPN.pkg.signature and ver.ini files to TRAC.pkg, TRAC.pkg.signature and trac_ver_osx.txt respectively. 3. Upload these files to this directory on the gateway: $FWDIR/conf/extender/CSHELL For version R71.x only, copy the TRAC.pkg and TRAC.pkg.signature files also to: $CVPNDIR/htdocs/SNX/CSHELL. 4. On a non-windows gateway, run: chmod 750 TRAC.pkg chmod 750 TRAC.pkg.signature chmod 750 trac_ver_osx.txt Security VPN for Mac Release Notes E80.41 9

Known Limitations and Resolved Issues 5. In SmartDashboard, go to Policy > Global Properties > Remote Access > Connect. 6. Select one of these Client upgrade mode options: Do not upgrade - This option disables automatic upgrades from the gateway. Automatic upgrades are not available for endpoint users. Ask user - The user receives a prompt and can install immediately or at a later time. If the user does not install the upgrade immediately, the prompt will show again in one week. Always upgrade - The new package installs silently without user intervention. The user receives a notification once the upgrade completes successfully. 7. Install the policy. Known Limitations and Resolved Issues Known limitations for this release are in sk91183 (http://supportcontent.checkpoint.com/solutions?id=sk91183). Resolved issues for this release are in sk91184 (http://supportcontent.checkpoint.com/solutions?id=sk91184). All limitations for E80.40 Mac Clients in sk82101 (http://supportcontent.checkpoint.com/solutions?id=sk82101) apply to this release also, unless they are shown in the sk as Resolved in E80.41 for Mac. Security VPN for Mac Release Notes E80.41 10

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information