This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Yohan_Vaisseau
Explorer
‎2018-02-22 01:47 AM
Jump to solution

I would like disable split tunneling for vpn 

I installed the client vpn check point mobile and I wish that the internet flows through the vpn
1 Solution

Accepted Solutions
G_W_Albrecht
MVP Silver
MVP Silver
‎2018-02-22 02:49 AM
Jump to solution

See sk111995: You have to set Hub Mode / Route all traffic to gateway in Global Properties -> Remote Access -> Endpoint Connect -> Route all traffic to gateway -> set to "Yes" 

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist

View solution in original post

12 Replies
G_W_Albrecht
MVP Silver
MVP Silver
‎2018-02-22 02:49 AM
Jump to solution

See sk111995: You have to set Hub Mode / Route all traffic to gateway in Global Properties -> Remote Access -> Endpoint Connect -> Route all traffic to gateway -> set to "Yes" 

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
Ilovecheckpoint
Participant
‎2025-03-31 07:37 AM
In response to G_W_Albrecht
Jump to solution

Hello,

Hello,

once "Route all traffic to gateway" is set to YES, is the VPN domain configured in the remote access community checked, or is it treated as if the VPN domain is set to "All Internet"? In other words, if I select this option to YES and the VPN domain for remote access is set to only internal IP addresses, is all traffic still forced through the gateway, without considering the VPN domain setting?

0 Kudos
PhoneBoy
Admin
Admin
‎2025-03-31 08:34 AM
In response to Ilovecheckpoint
Jump to solution

Assuming you don't leave this as a "client decide" option to configure, you are correct.

0 Kudos
Gaurav_Pandya
Advisor
‎2018-02-22 04:21 AM
Jump to solution

Yeah. That is correct what Gunther has suggested. It is best way.

Also you can try with enabling option "VPN Tunneling" on Endpoint client agent itself. but it is manual task.

If you are using SSL VPN with Mobile access blade then follow below procedure to route all traffic to gateway.

https://community.checkpoint.com/message/12386-mobile-access-default-route

Omar_Khalif
Participant
‎2019-03-25 04:12 AM
In response to Gaurav_Pandya
Jump to solution

Hi,

checkpoint vpn tunneling greyed out ?  How do I get this ungreyed out ?

 

Maarten_Sjouw
Champion
Champion
‎2019-03-25 05:13 AM
In response to Omar_Khalif
Jump to solution

It is grayed out when it is controlled by the gateway.
Regards, Maarten
Basilio_Alcant1
Contributor
‎2020-01-10 08:02 AM
In response to Maarten_Sjouw
Jump to solution

Hi Guys,

 

can somebody tell me how to change this on the endpoint? we would like to turn on split tunneling only for one endpoint for testing purposes without changing this for everybody via Global Properties.

 

Thank You,

Basilio Alcantara

marimcuri
Explorer
‎2019-07-30 08:00 AM
In response to Omar_Khalif
Jump to solution

Hi Omar,

 

Did you get any solution? I'm facing same issue in MacOS. For Windows I already saw some workarounds however not applicable for Mac.

Yatiraj_Panchal
Contributor
‎2020-01-10 08:25 AM
Jump to solution

Hi,

Yes, you can this. Follow the below step:

Global Properties --> Remote Access --> Endpoint Connect --> Route all traffic to gateway --> set to "Yes" 

Basilio_Alcant1
Contributor
‎2020-01-10 08:31 AM
In response to Yatiraj_Panchal
Jump to solution

I would like to modify it on the endpoint client for a machine manually , not on global properties since that will be a global change that affects all firewalls hosting remote acccess.
0 Kudos
Lari_Luoma
MVP Gold CHKP MVP Gold CHKP
MVP Gold CHKP
‎2020-01-11 01:57 PM
In response to Basilio_Alcant1
Jump to solution

Global Properties - Remote Access End Pont Connect select the following option.

Route All Traffic to GW: Configured on endpoint client

Capture.PNG

 

Alex_Alborzfard
Contributor
‎2021-05-20 08:05 AM
In response to Lari_Luoma
Jump to solution

After enabling this, can't access anything outside, only internal. Do we need to enable NAT for the Office Mode subnet, in order to be able access outside?

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events