Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Highlighted
Explorer

Routing client VPN traffic into site-to-site VPN tunnel

Hi Mates,

 

Is it possible to route Check Point Endpoint Security VPN client traffic into a site-to-site VPN tunnel?

The remote client connects from the Internet to the CP Gateway with the Endpoint Security VPN client and he should connect to a remote server over a site-to-site VPN tunnel. Both the client VPN and the site-to-site VPN managed and terminated by the same CP gateway. Office Mode is enabled, Hub Mode is disabled.

 

Thank you in advance for your help,

Best regards,

Gabor

0 Kudos
4 Replies
Highlighted
Admin
Admin

You have to add the remote site’s encryption domain into the Remote Access VPN Community.

0 Kudos
Highlighted
Explorer

Thank you for your reply PhoneBoy 🙂

Do you mean that the remote site's VPN domain should be added to the relevant Gateway >> Network Management >> VPN Domain >> Manually defined  group?

Is it all that should be done or is there anything else to do?

 

Best regards,

BoGa

0 Kudos
Highlighted
Champion
Champion

I believe there is a separate "Remote Access VPN Domain" that should be used for this.

0 Kudos
Highlighted
Explorer

Hello Vladimir,

Yes, there is a Remote Access VPN Community, which is used for the Remote Access VPN users.

Participating Gateways and Participant User Groups can be added here, but not VPN domains directly. Participating Gateways could be relevant, where an Interoperable Device can be added, which represents the remote peer's gateway with its public IPv4 address and VPN Domain.

It would be the solution - as I understand correctly, right?

Thanks,

BoGa

0 Kudos