Hello @PhoneBoy, Sure here is the configuration.
AWS Side Configuration
1. Create a Site-to-Site Connection:
- Under Static Route, add your local network CIDR.
- Download the configuration:
- Vendor: Checkpoint
- Platform: Gaia
- Software: R80.10+
- IKE Version: IKEv2
Checkpoint SMB Configuration
1. Connect to the Firewall via SSH and Create a VPN Tunnel (VTI):
- Verify that the VPN tunnel (VTI) is visible under Local Network
2. Create a VPN Site:
- Navigate to VPN -> VPN Sites -> New.
Remote Site
Encryption
Advanced
This is the configuration we have done as per the sk111733
Below is the screenshot where you able to see the VPN tunnel us up at both sides.