This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Torbjorn_Granhe
Explorer
‎2018-08-14 07:02 AM

Check Point Capsule

Hi

I´m working with a large multinational company. They are using Check Point Mobile with Windows 7.

Now they are starting to deploy windows 10 and are looking at Always on VPN.

I have come across three options:

1. Always on VPN with the native Win VPN client and Check Point Capsule plugin against Checkpoint backen

-Pros - Small software installation from store, uses existing backend

-Cons - Poorly documented, looks like the client has no updated since 2014?

2. Always-connect with the Check Point Mobile client against Checkpoint backend

-Pros - Uses existing backend

-Cons - Check Point Mobile Software broke between 1709 and 1803

3. Always on VPN with the native Win VPN client against Windows RRAS in backend

-Pros - No software installation, Device tunnel

-Cons - Needs a complete new backend with Windows RRAS

Has anyone successfully used option 1 with Capsule and Always on VPN configuration?

Is option 1 a stable simple solution or is option 2 better?

Does option 1 have any limitations compared to option 2?

All input is appreciated

Mr Tbone

2 Replies
PhoneBoy
Admin
Admin
‎2018-08-16 06:57 PM

If I remember right, the native VPN client in Windows is L2TP.

This has been supported for quite some time across numerous Windows versions.

Unfortunately, I have never tried it as an "always on VPN".

As far as I know, we "fixed" the issue with Check Point Mobile and Windows 10 build 1809 in May.

See: Check Point Endpoint Security Client Support Schedule for New Operating Systems 

If you're still having issues still, please open a ticket with the TAC.

0 Kudos
Torbjorn_Granhe
Explorer
‎2018-08-17 06:11 AM
In response to PhoneBoy

Hi,

Windows native has support for pptp, l2tp, sstp and ikev2 (ipsec). So it´s quite competent. 🙂

But it cannot, by it self, connect to a Check Point server. It needs the Check point Capsule Plugin.

With this plugin Windows/Capsule can connect to an existing Check Point server.

But I cannot find many reports on how it works, and if its a stable solution.

Of course Check Point has fixed and will fix every upcoming incompatibility problems with Windows 10. But at every windows 10 release we have to wait for a check point release. Then we can package, test and deploy.

A lot of time can be saved by using a built in product.

/Tbone

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events