This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Christian_Opitz
Contributor
Contributor
‎2021-03-12 04:17 AM

Routing of with 2 ISPs

Hello,

we want to replace a Sophos Firewall-Cluster through a CP Cluster.

2 independent ISPs (without BGP) are connected. The first ISP is for the main outgoing traffic (default GW) and external servers. Some other servers are reachable through the other ISP from outside. All server must be reachable from the complete Internet.

Sophos remembers the incoming interface and routing so the answer packet is forwarded automatically the same way.

Check Point uses his routing table also for replys but that will be result to wrong routing of the answer packet for incoming internet connections from the second ISP.

Is there a way to realize this with Check Point without PBR, VSX or a source hide-nat on a device before?

With PBR we will get some limitations (like https Inspection). But these limitation will we only for Traffic with PBR and not going over the default Gateway correct?

0 Kudos
1 Reply
PhoneBoy
Admin
Admin
‎2021-03-12 12:49 PM

You may also want to review the documentation for your specific version on a feature called ISP Redundancy.
Not 100% sure it will be a better solution than PBR in this case, which is your other likely option.
I believe the limitations apply to traffic subject to PBR.

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events