This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
caleb_butcher
Explorer
‎2020-06-03 12:35 PM
Jump to solution

Mobile Access VPN - Access to Azure through office VPN

We have setup and deployed 2 pieces to an environment and now trying to see if we can get them to talk to one another.

 

Remote Access to the office and office resources works normally.

S2S VPN from office to Azure works normally. This is done via a Policy Based Virtual Network Gateway in Azure, not a virtual CheckPoint appliance.

 

What we want to do is allow users that connect to the remote access VPN the ability to get to Azure resources that they would normally be able to access if they were in the office. Looking through the logs this looks like an IKE issue and the traffic is being dropped by Access Rule 0 rather than a rule that is in our access policy.

 

Is there something we are missing here? Unsure what to look at and curious if this is just not possible or if I'm overlooking a setting / config that can get this working for us. We have our gateway on R80.30 and are on the MaaS platform on R80.40 management

 

Thanks!

0 Kudos
1 Solution

Accepted Solutions
PhoneBoy
Admin
Admin
‎2020-06-03 05:25 PM
Jump to solution

Have you configured the Remote Access VPN community to include the encryption domain on the Azure side?
Likewise, have you configured the encryption settings in Azure to include the Office Mode addresses?

View solution in original post

2 Replies
PhoneBoy
Admin
Admin
‎2020-06-03 05:25 PM
Jump to solution

Have you configured the Remote Access VPN community to include the encryption domain on the Azure side?
Likewise, have you configured the encryption settings in Azure to include the Office Mode addresses?
caleb_butcher
Explorer
‎2020-06-04 06:15 AM
In response to PhoneBoy
Jump to solution

@PhoneBoyThank you! I forgot to add the Office mode address on the Azure side, not sure why I overlooked that but not going to complain when its an easy fix.

 

Thanks!

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events