Hi
I recently had a meeting with a customer and received inquiries and requests about whether CheckPoint supports the domain-based PBR function.
So I checked 'sk167135' and ran an test and I got a positive result.
However, since the SK document I saw requires enabling the hidden function, I am concerned that it will affect firewall performance and other functions.
Can you tell us about the cases or problems of using the above SK in actual customers?
The simple configuration and the test I conducted referring to the SK document are as follows
1. Enable hidden features
--> Possible to set PBR based on firewall rule number
2. Set FQDN policy in Smart Console and install policy
3. PBR setting based on rule number
4. Based on the figure below, general external communication is set to flow to ISP No. 1, and traffic matching the domain-based PBR rule flows to ISP No. 2, and I have confirmed that it operates normally.
| User | Count |
|---|---|
| 26 | |
| 12 | |
| 8 | |
| 5 | |
| 4 | |
| 3 | |
| 3 | |
| 3 | |
| 3 | |
| 3 |
Wed 14 Aug 2024 @ 05:00 PM (CEST)
Transform Your Data Center Management: The Power of Check Point’s Managed-Firewall-as-a-ServiceThu 15 Aug 2024 @ 02:00 PM (CEST)
The Future of Network Security for SMB and Branch Offices - EMEAThu 15 Aug 2024 @ 06:00 PM (CEST)
The Future of Network Security for SMB and Branch Offices - AmericasWed 14 Aug 2024 @ 05:00 PM (CEST)
Transform Your Data Center Management: The Power of Check Point’s Managed-Firewall-as-a-ServiceThu 15 Aug 2024 @ 02:00 PM (CEST)
The Future of Network Security for SMB and Branch Offices - EMEAThu 15 Aug 2024 @ 06:00 PM (CEST)
The Future of Network Security for SMB and Branch Offices - AmericasWed 04 Sep 2024 @ 05:00 PM (CEST)
Secure the GenAI Revolution with the All-New GenAI Security from Check PointWed 11 Sep 2024 @ 10:00 AM (CEST)
CheckMates Live Norway - Network Troubleshooting Best Practices
