fault tolerance recommendation for communication t... - Check Point CheckMates

Share your Cyber Security Insights
On-Stage at CPX 2025

Learn More

Simplifying Zero Trust Security
with Infinity Identity!

Watch Now

CheckMates Toolbox Contest 2024
Make Your Submission for a Chance to WIN up to $300 Gift Card!

LEARN MORE!

CheckMates Go:
What's New in R82

LISTEN NOW

Hello - working with local CP engineer on topic but figured I'd post to community as well for recommendations and insight.

existing CP customer with perimeter cluster has requirement to setup fault tolerant configuration for communication to off-site trading application/site.

The preferred communication method is IPsec VPN to trading app/site. Assume 3rd party (not Checkpoint gateway).

The topics being discussed include (but not all inclusive):

Two internet connections to CP customer datacenter.
unsure if trading site has two separate ISP connections.
relevant traffic would be OUTBOUND only from CP customer.
access to remote Trading App/site should survive loss of ONE ISP circuits for CP customer.
open to any combination of ISP Redundancy and/or Dynamic routing.
only makes sense to have TWO (or FOUR) established site-to-site IPSEC connections, both using different ISP circuits on each end of connection (CP customer and remote trading app/site).

Note: I say "fault tolerance" instead of High Availablity because access to remote trading app/site should NOT be affect by loss of any individual circuit, VPN link, or node of gateway.

Any thoughts and/or recommendations would be appreciated.

Thanks

0 Replies

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

User

Count

22

20

16

11

8

8

7

5

5

5

Upcoming Events

Sort by:

Virtual

Tue 12 Nov 2024 @ 03:00 PM (AEDT)

No Suits, No Ties: From Calm to Chaos: the sudden impact of ransomware and its effects (APAC)

Virtual

Tue 12 Nov 2024 @ 10:00 AM (CET)

No Suits, No Ties: From Calm to Chaos: the sudden impact of ransomware and its effects (EMEA)

Virtual

Tue 12 Nov 2024 @ 02:00 PM (CET)

Part 1: Harnessing AI to Prevent Cyber Attacks and Enhance Defense - EMEA

Virtual

Tue 12 Nov 2024 @ 11:00 AM (EST)

No Suits, No Ties: From Calm to Chaos: the sudden impact of ransomware and its effects (AMERICAS)

Virtual

Tue 12 Nov 2024 @ 02:00 PM (EST)

Part 1: Harnessing AI to Prevent Cyber Attacks and Enhance Defense - Americas

Thu 14 Nov 2024 @ 05:00 PM (CET)

Code Security Strategies for Minimizing Emergency Fixes

Virtual

Tue 12 Nov 2024 @ 03:00 PM (AEDT)

No Suits, No Ties: From Calm to Chaos: the sudden impact of ransomware and its effects (APAC)

Virtual

Tue 12 Nov 2024 @ 10:00 AM (CET)

No Suits, No Ties: From Calm to Chaos: the sudden impact of ransomware and its effects (EMEA)

Virtual

Tue 12 Nov 2024 @ 02:00 PM (CET)

Part 1: Harnessing AI to Prevent Cyber Attacks and Enhance Defense - EMEA

Virtual

Tue 12 Nov 2024 @ 11:00 AM (EST)

No Suits, No Ties: From Calm to Chaos: the sudden impact of ransomware and its effects (AMERICAS)

Virtual

Tue 12 Nov 2024 @ 02:00 PM (EST)

Part 1: Harnessing AI to Prevent Cyber Attacks and Enhance Defense - Americas

Virtual

Wed 20 Nov 2024 @ 05:00 PM (CET)

Under the Hood: DO NOT Renew your WAF without watching THIS!!

In-Person

Tue 19 Nov 2024 @ 10:00 AM (CET)

CheckMates Live Munich - What's new in R82?

In-Person

Tue 19 Nov 2024 @ 12:00 PM (MST)

Salt Lake City: Infinity External Risk Management and Harmony SaaS

In-Person

Wed 20 Nov 2024 @ 02:00 PM (MST)

Denver South: Infinity External Risk Management and Harmony SaaS

In-Person

Thu 21 Nov 2024 @ 10:00 AM (CET)

CheckMates Live Frankfurt - What's new in R82?

In-Person

Thu 21 Nov 2024 @ 02:00 PM (MST)

Denver North: Infinity External Risk Management and Harmony SaaS

In-Person

Tue 03 Dec 2024 @ 10:00 AM (GMT)

UK Community CNAPP Training Day 1: Cloud Risk Management Workshop

CheckMates Events