- Products
- Learn
- Local User Groups
- Partners
- More
Firewall Uptime, Reimagined
How AIOps Simplifies Operations and Prevents Outages
Introduction to Lakera:
Securing the AI Frontier!
Check Point Named Leader
2025 Gartner® Magic Quadrant™ for Hybrid Mesh Firewall
HTTPS Inspection
Help us to understand your needs better
CheckMates Go:
SharePoint CVEs and More!
Hello, I want to create a site-to-site VPN between two Check Point firewalls, both with public IPs. If both firewalls are managed by the same management console, is there another method to establish the connection, or can I do it as if they were two independent Check Points? What would be the best method to create a site-to-site VPN in this case?
If they are managed by the same Security Management Server it is as simple as adding them them to a VPN Community (and a couple of other steps...)
The main difference between a Meshed and a Star VPN Community lies in their topology and the way VPN tunnels are established:
Meshed VPN Community:
Star VPN Community:
Seems like in your case you need a simple Meshed VPN Community. No need for a dedicated shared secret since they are part of the same community (Shared Secret would be needed if the Security Gateways are not managed by the same Security Management Server)
If they are managed by the same Security Management Server it is as simple as adding them them to a VPN Community (and a couple of other steps...)
Its pretty much what Tal sent.
Andy
When creating the VPN community, it would be set up as a star, and both security gateways would be added as center gateways without a shared secret?
The main difference between a Meshed and a Star VPN Community lies in their topology and the way VPN tunnels are established:
Meshed VPN Community:
Star VPN Community:
Seems like in your case you need a simple Meshed VPN Community. No need for a dedicated shared secret since they are part of the same community (Shared Secret would be needed if the Security Gateways are not managed by the same Security Management Server)
"Thank you for your explanation, it was very clear."
To add to an excellent explanation Tal provided, hope below is useful too.
Andy
Thank you very much for the explanation, it will be helpful.
No problem, glad we can help.
Andy
If its only 2 firewalls, I never found much difference, but as @Tal_Paz-Fridman indicated, those are main differences. You are correct, only if you indicate satellite gateway, then you need to enter shared secret, so just add both of them (if its 2) as center gateways.
Andy
Leaderboard
Epsum factorial non deposit quid pro quo hic escorol.
User | Count |
---|---|
14 | |
12 | |
11 | |
9 | |
8 | |
7 | |
5 | |
5 | |
5 | |
5 |
Tue 07 Oct 2025 @ 10:00 AM (CEST)
Cloud Architect Series: AI-Powered API Security with CloudGuard WAFThu 09 Oct 2025 @ 10:00 AM (CEST)
CheckMates Live BeLux: Discover How to Stop Data Leaks in GenAI Tools: Live Demo You Can’t Miss!Thu 09 Oct 2025 @ 10:00 AM (CEST)
CheckMates Live BeLux: Discover How to Stop Data Leaks in GenAI Tools: Live Demo You Can’t Miss!Wed 22 Oct 2025 @ 11:00 AM (EDT)
Firewall Uptime, Reimagined: How AIOps Simplifies Operations and Prevents OutagesAbout CheckMates
Learn Check Point
Advanced Learning
YOU DESERVE THE BEST SECURITY