This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Michael_Horne
Advisor
‎2020-10-30 06:28 AM

S2S VPN MEP on Network segmentation firewalls

Hello All,

I have a need to implement MEP for S2S VPNs.  I have been reviewing the Site to Site VPN Admin Guide. I have concerns that what we want to achieve will not be supported.  The diagrams in the VPN Guide seem to all indicate routing is done in between Host-1 and Host-3 and the secure gateways with the IPsec connectivity:

Topology.png

We are using the security gateways for network segmentation as well as perimeter security with Internet access. It MEP still possible with this topology?

Drawing1.png

Or if the Internet access is down on M2, will the traffic from Host-1 blocked from reaching M1, while M2 continually tries to reactivate the IPsec tunnel to S1?

Many thanks,

Michael

Preview file
177 KB
Preview file
181 KB
0 Kudos
2 Replies
PhoneBoy
Admin
Admin
‎2020-11-01 10:32 PM

What's the connectivity between M1 and M2 in this case?

0 Kudos
Michael_Horne
Advisor
‎2020-11-02 12:55 AM
In response to PhoneBoy

Hello,

The connectivity in this specific case is an MPLS VPN cloud. So no direct connecitivity

We want to have the tunnels terminating at to different sites in the US.

Regards,

Michael

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events