This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Tip of the Week - Split Tunnel for Office 365 or other SaaS Applications, How TO

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
_Val_
Admin
Admin
0 0 1,416
‎2020-06-02 12:10 AM

For the safety of their organizations and to help stop the spread of COVID-19/Coronavirus, our customers have moved all non-essential employees to work from home. The increase in volume of remote workers has resulted in considerable added load on Security Gateways, and customers are requesting guidance from Microsoft and Check Point on how to alleviate this additional workload while still maintaining an acceptable security posture.

Microsoft has made two recommendation to customers using Office 365 applications to optimize user experience:

1.    Split tunnel Office 365 applications instead of routing them over a VPN tunnel

2.    Split tunnel Office 365 applications using explicit “Optimized” Microsoft provided IP address ranges rather than split-tunneling using generic O365 FQDNs

This SecureKnowledge article describes how to achieve this when using a Check Point VPN client. While sending these connections directly to the Office 365 services alleviates the load on Check Point Security Gateways it also removes this traffic from the path of Threat Prevention inspection those same gateways provide. Customers should evaluate if split-tunneling this traffic meets their security posture needs. 

0 Kudos