Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Highlighted

Initiate from Internal (server) traffic to SSL VPN (RA) users traffic flow - R80.20

Hi all,

I will keep this as simple as possible.

An internal network segment has a specific host that scan the internal network(s) continuously for any threats.

 

With the (new) current scenario the work force are now 100% remote and connects using SSL VPN.  Access from the end-user via SSL VPN is not a problem and split-tunnelling is in use.  

With the order of processing and the way Checkpoint FW's deal with internal traffic to SSL VPN traffic, should I expect that the same 'scanning host' should reach the SSL VPN users if there is any to any policy rule in place for just the scanning host as an object(scanHost_object) and the vpn users (ra_object) as part of a troubleshooting session.

The FW engineers I'm working with could not answer me in terms of whether the Checkpoint would need any 'special' considerations in terms of traffic being initiated from the internal network(s) to RA SSL VPN users.

Any guidance/advise would be appreciated.

Regards,

Johann

 

 

 

 

 

0 Kudos
1 Reply
Highlighted
Admin
Admin

In general, yes, this should work (assuming you're using Office Mode).
There may be one other setting in Global Properties that needs to be set for this also.
0 Kudos