we are currently deploying our first and only virtual CheckPoint Appliance based on Azure. The main configuration was sometimes already confusing or completely new, due the focus on hardware-based Appliance with direct access to the internet in the past. Currently the Virtual Appliance (80.30) is connected and managed via our Cluster (80.20) based on two 4800 Blades.
Now the problem for us:
The virtual Appliance has an Alias Interface to adress public traffic. How can we use this public IP oder Alias Interface in the Setup of an VPN Tunnel between the CheckPoint Cluster on-premises and the Azure virtual CheckPoint Appliance? Which setting is the correct one in the menu für "IPsec VPN"?
An error indicates, that "Main adress" is the wrong setting, because the Main adress of the object is the public IP which is - absolutly confirmed - not part part of the topology table.
Any advise or help is appriciated. 🙂