IPSEC VPN Between AWS - Check Point CheckMates

Share your Cyber Security Insights
On-Stage at CPX 2025

Learn More

Simplifying Zero Trust Security
with Infinity Identity!

Watch Now

CheckMates Toolbox Contest 2024
Make Your Submission for a Chance to WIN up to $300 Gift Card!

LEARN MORE!

CheckMates Go:
What's New in R82

LISTEN NOW

Hi ,

I want to create a IPSEC Tunnel between On-premise Checkpoint VPN device(R80.x) to AWS VPC . Is there any AMI which I can use?

Once established can I access a RDS endpoint in the private subnet of AWS VPC (appdb.xxx.xxx.dns.com 3306 port ) from the On-premise checkpoint VPN device ? If its possible can someone help any documentation/links to try out this option?

Looks like there are some challenges while accessing the DNS. Can anybody help in this regard?

https://www.fir3net.com/Firewalls/Check-Point/allowing-domain-dns-based-objects-through-a-checkpoint...

Regards

PP

1 Reply

Technically you don’t even need an AMI to terminate a VPN in AWS.
See: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut...

If you do want to terminate the VPN with a Check Point gateway in your VPC, you can do that as well by using any of the standard gateway AMIs.

Not exactly sure about the DNS part of it but I assume you can configure your on-premise DNS server to forward requests for the relevant domain over the VPN tunnel to the internal AWS DNS server (assuming the name can’t be externally resolved).

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

User

Count

29

20

11

10

6

6

5

5

4

4

Upcoming Events

Sort by:

In-Person

Tue 05 Nov 2024 @ 09:00 AM (CET)

CheckMates Live France - R82 Workshop!

Virtual

Thu 07 Nov 2024 @ 10:00 AM (CET)

CheckMates Live BeLux: Infinity Identity!

Thu 07 Nov 2024 @ 05:00 PM (CET)

What's New in CloudGuard - Priorities, Trends and Roadmap Innovations

Virtual

Thu 07 Nov 2024 @ 02:00 PM (EST)

Canada: HTTPS Inspection Best Practices

Fri 08 Nov 2024 @ 10:00 AM (CET)

CheckMates Live Netherlands - Sessie 30: Check Point R82!

Virtual

Tue 12 Nov 2024 @ 03:00 PM (AEDT)

No Suits, No Ties: From Calm to Chaos: the sudden impact of ransomware and its effects (APAC)

Virtual

Thu 07 Nov 2024 @ 10:00 AM (CET)

CheckMates Live BeLux: Infinity Identity!

Virtual

Thu 07 Nov 2024 @ 02:00 PM (EST)

Canada: HTTPS Inspection Best Practices

Virtual

Tue 12 Nov 2024 @ 03:00 PM (AEDT)

No Suits, No Ties: From Calm to Chaos: the sudden impact of ransomware and its effects (APAC)

Virtual

Tue 12 Nov 2024 @ 10:00 AM (CET)

No Suits, No Ties: From Calm to Chaos: the sudden impact of ransomware and its effects (EMEA)

Virtual

Tue 12 Nov 2024 @ 02:00 PM (CET)

Part 1: Harnessing AI to Prevent Cyber Attacks and Enhance Defense - EMEA

Virtual

Tue 12 Nov 2024 @ 11:00 AM (EST)

No Suits, No Ties: From Calm to Chaos: the sudden impact of ransomware and its effects (AMERICAS)

In-Person

Tue 05 Nov 2024 @ 09:00 AM (CET)

CheckMates Live France - R82 Workshop!

In-Person

Tue 19 Nov 2024 @ 10:00 AM (CET)

CheckMates Live Munich - What's new in R82?

In-Person

Tue 19 Nov 2024 @ 12:00 PM (MST)

Salt Lake City: Infinity External Risk Management and Harmony SaaS

In-Person

Wed 20 Nov 2024 @ 02:00 PM (MST)

Denver South: Infinity External Risk Management and Harmony SaaS

In-Person

Thu 21 Nov 2024 @ 10:00 AM (CET)

CheckMates Live Frankfurt - What's new in R82?

In-Person

Tue 03 Dec 2024 @ 10:00 AM (GMT)

UK Community CNAPP Training Day 1: Cloud Risk Management Workshop

CheckMates Events