This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
an_technical
Explorer
‎2025-09-17 10:12 AM

Route based VPN with palo alto firewall

Hi Team,

 

we are trying to  establish route based vpn with palo alto firewall as requirement is to have automatic tunnel and traffic failover from pa side as they are using 2 isp. 
on palo alto side, they configured static route with path monitoring to track the ip so incase that ip is unreachable, it failover to secondary tunnel.

i want to know is this can be achieved through static routes. On palo alto side, failover happen but when traffic comes to checkpoint it still sending reply traffic through primary tunnel. Is there any way we can configure something like path monitoring that is in pa to monitor there tunnel interface ip?

 

Thanks

0 Kudos
4 Replies
PhoneBoy
Admin
Admin
‎2025-09-17 10:40 AM

Is there a specific reason you do not want to use Dynamic Routing here?
In R82, we have an object type "Network Probe" that could potentially do what you're after here.

0 Kudos
an_technical
Explorer
‎2025-09-17 10:43 AM
In response to PhoneBoy

Customer dont want to do use dynamic routing. Is there anyway we an achieve this? 

0 Kudos
PhoneBoy
Admin
Admin
‎2025-09-17 11:02 AM
In response to an_technical

I imagine it would be similar to the configuration for AWS, which prefers Dynamic Routing: https://support.checkpoint.com/results/sk/sk100726 

the_rock
MVP Platinum
MVP Platinum
‎2025-09-17 10:56 AM

Through static route? I doubt it.

Andy

Best,
Andy
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events