This website uses cookies. By clicking OK, you consent to the use of cookies. Click Here to learn more about how we use cookies.
OK
ABOUT CHECKMATES & FAQ
Create a Post
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Help
Mitesh
Participant
‎2020-04-17 02:56 AM

Remote Access VPN

Hi,

Recently we deployed Checkpoint R80.40 Standalone on Azure cloud.

North South (Internet) & East-West(Inter Subnet) traffic is inspected by Checkpoint.

We having remote users and they want to access Server which is hosted in Azure via checkpoint. Did Remote Access VPN configuration in Checkpoint, But while connecting VPN using SecuRemote client getting below error message.

Failed to create the new site

Reason: Site is not working.

Looking for your support.

 

Thanks & Regards,

Mitesj

 

Reply
4 Replies
HeikoAnkenbrand
Champion
Champion
‎2020-04-17 04:37 AM

The question is, how did you configure your Azure firewall access?

Do you come via the Azure public IP of the frontend load balancer and LB NAT rules. That doesn't work.

You must use the Azure public IP of the cluster. And then there is the following to do:

1) In the Outgoing Route Selection section, select Operating system routing table option.

2) In the IPsec VPN section, go to Link Selection view. Under IP Selection by Remote Peer, select the Main address. Under Outgoing route Selection select Source IP address settings.

Maybe the settings will help.

Regards
Heiko

 

 

Reply
Mitesh
Participant
‎2020-04-17 07:20 AM
In response to HeikoAnkenbrand

Thanks Heiko for the reply.

Am connecting using Public IP address, we have not configured External or Internal Load balancer.

Using Secure Remote VPN am able to connect the site but unable to access the any resources as per the access rule.

Also user in not getting IP address which I have mentioned in Office Mode Pool. They are getting IP address from FrontEnd Interface.

 

Regards,

Mitesh Nandu  

 

0 Kudos
Reply
PhoneBoy
Admin
Admin
‎2020-04-19 01:01 PM
In response to Mitesh

Are you actually referring to SecuRemote here or are you referring to Check Point Mobile/Remote Access VPN?
These operate very differently.
For SecuRemote, this will probably apply: https://community.checkpoint.com/t5/Remote-Access-Solutions/Quick-Primer-on-How-to-Configure-your-Ga...
0 Kudos
Reply
Mitesh
Participant
‎2020-04-21 04:31 AM
In response to PhoneBoy

Issue got resolved post setting correct UDR.

Thanks guys for your knowledge & support.

 

Regards,

Mitesh

0 Kudos
Reply