https://community.checkpoint.com/t5/Cloud-Firewall/Gateway-configuration-on-AWS-instances/m-p/12709#M3175 <HTML><HEAD></HEAD><BODY><P>Hello, i created a simple lab with standalone Check Point r80.10 VM and a Linux (Ubuntu server) instance on AWS.</P><P></P><P>The internal interface and Linux server are in the same subnet (10.0.1.0/24). The IP address of gateway's internal interface is 10.0.1.202 and the Linux instance have IP 10.0.1.10. The AWS system configured 10.0.1.1 as Linux server gateway and for this reason NAT configuration performed by CP gateway doesnìt work (there isn't return traffic).</P><P></P><P>I configured a specific route for my current public IP address on Linux srv with 10.0.1.202 as gateway and in this case the maschine is reacheable from internet.</P><P></P><P>I need to change the default gateway of Linux server manually? This is the normal behaviour?</P><P></P><P>During the Check Point instance configuration i selected the option for distribuite the CP as gateway...</P><P></P><P>Thanks a lot</P></BODY></HTML> Sat, 03 Nov 2018 09:27:56 GMT Cristian_F_CCSM 2018-11-03T09:27:56Z https://community.checkpoint.com/t5/Cloud-Firewall/Gateway-configuration-on-AWS-instances/m-p/12709#M3175 <HTML><HEAD></HEAD><BODY><P>Hello, i created a simple lab with standalone Check Point r80.10 VM and a Linux (Ubuntu server) instance on AWS.</P><P></P><P>The internal interface and Linux server are in the same subnet (10.0.1.0/24). The IP address of gateway's internal interface is 10.0.1.202 and the Linux instance have IP 10.0.1.10. The AWS system configured 10.0.1.1 as Linux server gateway and for this reason NAT configuration performed by CP gateway doesnìt work (there isn't return traffic).</P><P></P><P>I configured a specific route for my current public IP address on Linux srv with 10.0.1.202 as gateway and in this case the maschine is reacheable from internet.</P><P></P><P>I need to change the default gateway of Linux server manually? This is the normal behaviour?</P><P></P><P>During the Check Point instance configuration i selected the option for distribuite the CP as gateway...</P><P></P><P>Thanks a lot</P></BODY></HTML> Sat, 03 Nov 2018 09:27:56 GMT https://community.checkpoint.com/t5/Cloud-Firewall/Gateway-configuration-on-AWS-instances/m-p/12709#M3175 Cristian_F_CCSM 2018-11-03T09:27:56Z https://community.checkpoint.com/t5/Cloud-Firewall/Gateway-configuration-on-AWS-instances/m-p/12710#M3176 <HTML><HEAD></HEAD><BODY><P>Please see my article&nbsp;<A href="https://community.checkpoint.com/docs/DOC-2301-vsec-deployment-scenarios-in-aws" target="_blank">https://community.checkpoint.com/docs/DOC-2301-vsec-deployment-scenarios-in-aws</A>&nbsp;.</P><P>I believe the first one addressing your requirements.</P><P>You have to have a route table associated with the internal subnet pointing to the gateway's internal IP.</P></BODY></HTML> Fri, 21 Jun 2019 09:02:32 GMT https://community.checkpoint.com/t5/Cloud-Firewall/Gateway-configuration-on-AWS-instances/m-p/12710#M3176 Vladimir 2019-06-21T09:02:32Z https://community.checkpoint.com/t5/Cloud-Firewall/Gateway-configuration-on-AWS-instances/m-p/12711#M3177 <HTML><HEAD></HEAD><BODY><P>Hello, thanks a lot, we will update you during the next days.</P></BODY></HTML> Sun, 04 Nov 2018 17:59:33 GMT https://community.checkpoint.com/t5/Cloud-Firewall/Gateway-configuration-on-AWS-instances/m-p/12711#M3177 Cristian_F_CCSM 2018-11-04T17:59:33Z https://community.checkpoint.com/t5/Cloud-Firewall/Gateway-configuration-on-AWS-instances/m-p/12712#M3178 <HTML><HEAD></HEAD><BODY><P>Hello, we correcred the route table linked to internal subnet.</P><P>The internal server mantein the gw 10.0.1.1 but now the return traffic through CP is OK.</P><P></P><P>Thanks again</P></BODY></HTML> Fri, 09 Nov 2018 20:59:57 GMT https://community.checkpoint.com/t5/Cloud-Firewall/Gateway-configuration-on-AWS-instances/m-p/12712#M3178 Cristian_F_CCSM 2018-11-09T20:59:57Z