This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Mark_Edwards
Contributor
yesterday

Access to Azure server via on-premise CP gateway and S2S VPN with Azure

Hi,

customer has a VPN between on-premise CP and Azure VPN host and can access Azure servers from the office.

Now they want to access the Azure servers from the Internet via office CP and VPN. 

I have added the necessary access rule and a source and destination NAT rule so that traffic will traverse the VPN.

I have also included the public IP of the Azure server in the Azure VPN domain. 

 

Logs show the connection "Encrypted in community ..." and the relevant NAT rule but we are unable to connect. 

 

tcpdump and a "fw monitor" do not capture any traffic for the source and destination NAT IP addresses. 

I suspect the issue is with the NAT as I see this for my IP from a "fw monitor" capture.

[vs_0][ppak_0] eth1:Oe[44]: 41.160.x.x -> 196.x.x.x (TCP) len=52 id=51573
TCP: 56844 -> 80 .S.... seq=106564e8 ack=0000000

From my understanding the NAT should have taken place before the Post-outbound VPN and I shouldn't see my IP at this stage?

I have also changed the VPN routing in the VPN community. 

 

Am I missing something?

 

 

 

 

 

 

 

0 Kudos
0 Replies

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events