This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
FWNinja
Contributor
‎2019-09-12 07:22 AM
Jump to solution

VPN Link Selection - Question

Hi all,

I have other question for you.

I have configured VPN link selection with "Outgoing Route Selection -> When initiating a tunnel -> Operating system routing table".

"Operating system routing table" conteins PBR route? Or PBR route are in a separeted table?

 

Thanks and Best regards

Francesco

0 Kudos
1 Solution

Accepted Solutions
FWNinja
Contributor
‎2019-09-16 12:59 AM
In response to PhoneBoy
Jump to solution

Hi,

I will migrate Internet connection using PBR route.

For VPN route in Link Selection section it's configured "Outgoing Route Selection -> When initiating a tunnel -> Operating system routing table".

So, I want to know if Operating system routing table conteins PBR route that I will configure for the Internet connection migration.

Thanks

BR

Francesco

View solution in original post

0 Kudos
8 Replies
G_W_Albrecht
MVP Silver
MVP Silver
‎2019-09-12 07:29 AM
Jump to solution

Have a good look into this : sk100500: Policy-Based Routing(PBR) on Gaia OS

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
FWNinja
Contributor
‎2019-09-12 07:32 AM
In response to G_W_Albrecht
Jump to solution

Thanks for the link.

I already read sk link related to PBR but I cannot find anything relevant about my question.

Best regards

Francesco

0 Kudos
PhoneBoy
Admin
Admin
‎2019-09-12 11:07 AM
Jump to solution

What is it you're actually trying to accomplish?
0 Kudos
FWNinja
Contributor
‎2019-09-13 12:50 AM
In response to PhoneBoy
Jump to solution

Hi,

I'm going to migrate Internet connection to a new ISP External interface.

I will use PBR to migrate subnet per sunbet.

I'd like to know if the OS routing table (in vpn link selection) conteins PBR route.

 

Thanks and Best Regards

Francesco

0 Kudos
FWNinja
Contributor
‎2019-09-16 12:59 AM
In response to PhoneBoy
Jump to solution

Hi,

I will migrate Internet connection using PBR route.

For VPN route in Link Selection section it's configured "Outgoing Route Selection -> When initiating a tunnel -> Operating system routing table".

So, I want to know if Operating system routing table conteins PBR route that I will configure for the Internet connection migration.

Thanks

BR

Francesco

0 Kudos
FWNinja
Contributor
‎2019-09-18 01:50 AM
In response to FWNinja
Jump to solution

VPN Link Selection does not support PBR route for outbound vpn traffic. Checkpoint confirmed it!
0 Kudos
Maarten_Sjouw
Champion
Champion
‎2019-09-18 04:20 AM
In response to FWNinja
Jump to solution

VPN selection should use this setting indeed and you should set static routes for the remote sites that you have migrated to the new IP.
PBR has nothing to do with setting up the VPN, the traffic will not actually use the PBR as the traffic is not related to the VPN IPs themselves.
Regards, Maarten
0 Kudos
FedericoMeiners
Advisor
‎2019-09-18 06:43 AM
In response to Maarten_Sjouw
Jump to solution

@Maarten_Sjouw It's important to note that PBR takes precedence before static routes, I have many customers with PBR intensive gateways that usually route by source causing VPN routing chaos.

____________
https://www.linkedin.com/in/federicomeiners/
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events