Best practice for Azure Checkpoint gateway management
I am looking for the best practice for managing a CP gateway in Azure Tenant via CP management server which hosted on-premise data center. I am thinking manage this azure remote gateway over its public IP but have security concerns. Or a site-site VPN to Azure tenant is a good choice?
Anyone who could provide the suggestion or URL links that would be grateful.
Putting the necessary traffic through a VPN is not considered best practice mostly because the necessary traffic is already encrypted/secured.
Also, if the VPN breaks for some reason, you lose the ability to manage your gateway.
Implied rules will allow the necessary traffic, but you will need to configure a NAT for your management server in the relevant object (most likely), see: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut...