Hi
I recently had a meeting with a customer and received inquiries and requests about whether CheckPoint supports the domain-based PBR function.
So I checked 'sk167135' and ran an test and I got a positive result.
However, since the SK document I saw requires enabling the hidden function, I am concerned that it will affect firewall performance and other functions.
Can you tell us about the cases or problems of using the above SK in actual customers?
The simple configuration and the test I conducted referring to the SK document are as follows
1. Enable hidden features
--> Possible to set PBR based on firewall rule number
2. Set FQDN policy in Smart Console and install policy
3. PBR setting based on rule number
4. Based on the figure below, general external communication is set to flow to ISP No. 1, and traffic matching the domain-based PBR rule flows to ISP No. 2, and I have confirmed that it operates normally.
| User | Count |
|---|---|
| 26 | |
| 19 | |
| 19 | |
| 17 | |
| 10 | |
| 8 | |
| 8 | |
| 6 | |
| 5 | |
| 5 |
Mon 18 Nov 2024 @ 03:00 PM (CET)
EMEA CM LIve: Enhancing Security for Hybrid Workplace and Remote WorkforceMon 18 Nov 2024 @ 02:00 PM (EST)
Americas CM Live: Enhancing Security for Hybrid Workplace and Remote WorkforceTue 19 Nov 2024 @ 03:00 PM (CET)
AI Series Part 3: Maximising AI to Drive Growth and Efficiency (EMEA)Tue 19 Nov 2024 @ 12:00 PM (MST)
Salt Lake City: Infinity External Risk Management and Harmony SaaSWed 20 Nov 2024 @ 05:00 PM (CET)
Under the Hood: DO NOT Renew your WAF without watching THIS!!Mon 18 Nov 2024 @ 03:00 PM (CET)
EMEA CM LIve: Enhancing Security for Hybrid Workplace and Remote WorkforceMon 18 Nov 2024 @ 02:00 PM (EST)
Americas CM Live: Enhancing Security for Hybrid Workplace and Remote WorkforceTue 19 Nov 2024 @ 03:00 PM (CET)
AI Series Part 3: Maximising AI to Drive Growth and Efficiency (EMEA)Wed 20 Nov 2024 @ 05:00 PM (CET)
Under the Hood: DO NOT Renew your WAF without watching THIS!!Mon 25 Nov 2024 @ 02:00 PM (EST)
(Americas) AI Series Part 3: Maximizing AI to Drive Growth and EfficiencyTue 19 Nov 2024 @ 12:00 PM (MST)
Salt Lake City: Infinity External Risk Management and Harmony SaaSWed 20 Nov 2024 @ 02:00 PM (MST)
Denver South: Infinity External Risk Management and Harmony SaaSThu 21 Nov 2024 @ 02:00 PM (MST)
Denver North: Infinity External Risk Management and Harmony SaaSTue 03 Dec 2024 @ 10:00 AM (GMT)
UK Community CNAPP Training Day 1: Cloud Risk Management Workshop
