Remote Access VPN
Recently we deployed Checkpoint R80.40 Standalone on Azure cloud.
North South (Internet) & East-West(Inter Subnet) traffic is inspected by Checkpoint.
We having remote users and they want to access Server which is hosted in Azure via checkpoint. Did Remote Access VPN configuration in Checkpoint, But while connecting VPN using SecuRemote client getting below error message.
Failed to create the new site
Reason: Site is not working.
Looking for your support.
Thanks & Regards,
The question is, how did you configure your Azure firewall access?
Do you come via the Azure public IP of the frontend load balancer and LB NAT rules. That doesn't work.
You must use the Azure public IP of the cluster. And then there is the following to do:
1) In the Outgoing Route Selection section, select Operating system routing table option.
2) In the IPsec VPN section, go to Link Selection view. Under IP Selection by Remote Peer, select the Main address. Under Outgoing route Selection select Source IP address settings.
Maybe the settings will help.
Thanks Heiko for the reply.
Am connecting using Public IP address, we have not configured External or Internal Load balancer.
Using Secure Remote VPN am able to connect the site but unable to access the any resources as per the access rule.
Also user in not getting IP address which I have mentioned in Office Mode Pool. They are getting IP address from FrontEnd Interface.
These operate very differently.
For SecuRemote, this will probably apply: https://community.checkpoint.com/t5/Remote-Access-Solutions/Quick-Primer-on-How-to-Configure-your-Ga...