This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
destek
Explorer
‎2019-06-10 06:01 AM

Allow Remote Access Users to remote VPN site trought HQ Office GW

Hi,

 

We have a Check Point 1430 Security Appliance. This device have an IPSec Tunnel to remote network (Azure). I want to permit access to remote access users (Client To Site VPN) for this remote site. I've searched for hours I can't find any solution to solve my problem. I can ping Azure servers from HQ Office LAN but I'm not able to ping from remote access computer at the moment.

 

2019-06-10 15_58_08-Çizim1 - Visio Professional.png

 

 

0 Kudos
5 Replies
_Val_
Admin
Admin
‎2019-06-12 06:51 AM

Do you have Office Mode enabled for your VPN clients?

0 Kudos
destek
Explorer
‎2019-06-13 01:55 AM
In response to _Val_

Yes It's enabled
0 Kudos
G_W_Albrecht
Legend Legend
Legend
‎2019-06-12 07:29 AM

Using an Office Mode IP that is included in the local VPN encryption domain should provide what you want - but this is standard only with CP GWs. If this was a centrally managed SMB GW, you could just use RA VPN with Hub Mode. With locally managed SMB, you will have to manually configure a local encryption domain including the networks behind the Cisco GW for remote access users: See Check Point 1400 Appliances Locally Managed Administration Guide R77.20.87 p.158 !

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
destek
Explorer
‎2019-06-13 01:58 AM
In response to G_W_Albrecht

Hi, 

 

Yes I'm currently using Office Mode. I've checked the manual which is you pointed but I can't find how to I can create Encryption domain. The device is locally managed.

2019-06-13 11_55_49-Window.png

0 Kudos
TJ_Aus
Contributor
‎2022-04-27 08:42 PM
In response to destek

You may need to enable this:

vpn.png

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events