- Products
- Learn
- Local User Groups
- Partners
-
More
Join Us for CPX 360
23-24 February 2021
Important certificate update to CloudGuard Controller, CME,
and Azure HA Security Gateways
How to Remediate Endpoint & VPN
Issues (in versions E81.10 or earlier)
IDC Spotlight -
Uplevel The SOC
Important! R80 and R80.10
End Of Support around the corner (May 2021)
Hi Mates,
Is it possible to route Check Point Endpoint Security VPN client traffic into a site-to-site VPN tunnel?
The remote client connects from the Internet to the CP Gateway with the Endpoint Security VPN client and he should connect to a remote server over a site-to-site VPN tunnel. Both the client VPN and the site-to-site VPN managed and terminated by the same CP gateway. Office Mode is enabled, Hub Mode is disabled.
Thank you in advance for your help,
Best regards,
Gabor
You have to add the remote site’s encryption domain into the Remote Access VPN Community.
Thank you for your reply PhoneBoy 🙂
Do you mean that the remote site's VPN domain should be added to the relevant Gateway >> Network Management >> VPN Domain >> Manually defined group?
Is it all that should be done or is there anything else to do?
Best regards,
BoGa
I believe there is a separate "Remote Access VPN Domain" that should be used for this.
Hello Vladimir,
Yes, there is a Remote Access VPN Community, which is used for the Remote Access VPN users.
Participating Gateways and Participant User Groups can be added here, but not VPN domains directly. Participating Gateways could be relevant, where an Interoperable Device can be added, which represents the remote peer's gateway with its public IPv4 address and VPN Domain.
It would be the solution - as I understand correctly, right?
Thanks,
BoGa
About CheckMates
Learn Check Point
Advanced Learning
WELCOME TO THE FUTURE OF CYBER SECURITY