This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Mitesh
Participant
‎2020-04-17 02:56 AM

Remote Access VPN

Hi,

Recently we deployed Checkpoint R80.40 Standalone on Azure cloud.

North South (Internet) & East-West(Inter Subnet) traffic is inspected by Checkpoint.

We having remote users and they want to access Server which is hosted in Azure via checkpoint. Did Remote Access VPN configuration in Checkpoint, But while connecting VPN using SecuRemote client getting below error message.

Failed to create the new site

Reason: Site is not working.

Looking for your support.

 

Thanks & Regards,

Mitesj

 

4 Replies
HeikoAnkenbrand
Champion Champion
Champion
‎2020-04-17 04:37 AM

The question is, how did you configure your Azure firewall access?

Do you come via the Azure public IP of the frontend load balancer and LB NAT rules. That doesn't work.

You must use the Azure public IP of the cluster. And then there is the following to do:

1) In the Outgoing Route Selection section, select Operating system routing table option.

2) In the IPsec VPN section, go to Link Selection view. Under IP Selection by Remote Peer, select the Main address. Under Outgoing route Selection select Source IP address settings.

Maybe the settings will help.

Regards
Heiko

 

 

➜ CCSM Elite, CCME, CCTE ➜ www.checkpoint.tips
Mitesh
Participant
‎2020-04-17 07:20 AM
In response to HeikoAnkenbrand

Thanks Heiko for the reply.

Am connecting using Public IP address, we have not configured External or Internal Load balancer.

Using Secure Remote VPN am able to connect the site but unable to access the any resources as per the access rule.

Also user in not getting IP address which I have mentioned in Office Mode Pool. They are getting IP address from FrontEnd Interface.

 

Regards,

Mitesh Nandu  

 

0 Kudos
PhoneBoy
Admin
Admin
‎2020-04-19 01:01 PM
In response to Mitesh

Are you actually referring to SecuRemote here or are you referring to Check Point Mobile/Remote Access VPN?
These operate very differently.
For SecuRemote, this will probably apply: https://community.checkpoint.com/t5/Remote-Access-Solutions/Quick-Primer-on-How-to-Configure-your-Ga...
0 Kudos
Mitesh
Participant
‎2020-04-21 04:31 AM
In response to PhoneBoy

Issue got resolved post setting correct UDR.

Thanks guys for your knowledge & support.

 

Regards,

Mitesh

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
UPCOMING CLOUDMATES EVENTS
    All CloudMates Events