Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Ramesh_Pandey
Explorer

I have a checkpoint appliance 730, can i configure GRE tunnel with Zscaler in it? If so then can someone share some document for that

I want to configure the GRE tunnel on my internet facing appliance 730, so that it can communicate with Zscaler for cloud proxy solution. Please share some document for so if it is possible.

Thanks

4 Replies
PhoneBoy
Admin
Admin

As far as I know, no Check Point gateway supports building a GRE tunnel with another endpoint (Zscaler or otherwise).

The 730 has built-in functionality for App Control/URL Filtering so it can be done locally (assuming it is licensed).

0 Kudos
Raj_Khatri
Advisor

You will not be able to create a GRE tunnel from the Checkpoint device to Zscaler ZEN due to limitation of GRE support on the box.  You will need to create IPsec VPN tunnels instead which works, albeit, performance is not up to par.

0 Kudos
HeikoAnkenbrand
Champion Champion
Champion

 

I use a VPN tunnel for many customers for ZScaler proxy:

1) Add an VPN tunnel to ZScaler and add all internet addresses ( 0.0.0.1-223.255,255,255 and exclude privat networks)
2) Exclude your private and other used networks via crypt.def and no vpn traffic rules.

➜ CCSM Elite, CCME, CCTE
0 Kudos
HeikoAnkenbrand
Champion Champion
Champion

 

Here the sk86582 to no vpn trffic rules:

Excluding subnets in encryption domain from accessing a specific VPN community

 

➜ CCSM Elite, CCME, CCTE
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events