This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
ABOUT CHECKMATES & FAQ
Create a Post
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Help

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
chafik
Explorer
‎2022-04-07 06:23 AM

Checkpoint Site-to-Site VPN with Hairpinning (VSX R80.20)

Hi
I have 2 VPN IPSEC with between my Checkpoint FW and 2 Interoperable devices.

I'd like the remote subnet to communicate through my FW .

 

For example:

 

Encryption Domain    CKPT:                  5.5.5.0/24
Encryption Domain   FW-Remote-1:   1.1.1.0/24
Encryption Domain   FW-Remote-2:   2.2.2.0/24

 

VPN1 : CKPT and FW-Remote-1     (5.5.5.0/24  - 1.1.1.0/24)

VPN2 : CKPT and FW-Remote-2    (5.5.5.0/24  - 2.2.2.0/24)

 

I would like the subnet 1.1.1.0/24 to communicate with 2.2.2.0/24 through my CKPT.

 

 

I found exactly what I want in cisco site:

https://community.cisco.com/t5/security-documents/how-to-configure-site-to-site-vpn-with-hairpinning...

 

But it's for cisco, and I didn't find anything with CKPT.

Do you know if it's possible?

 

Regards

0 Kudos
1 Reply
_Val_
Admin
Admin
‎2022-04-07 07:51 AM

Yes, it is possible through Star VPN community. Please refer to VPN guide for details.

0 Kudos