Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
chafik
Explorer

Checkpoint Site-to-Site VPN with Hairpinning (VSX R80.20)

Hi
I have 2 VPN IPSEC with between my Checkpoint FW and 2 Interoperable devices.

I'd like the remote subnet to communicate through my FW .

 

For example:

 

Encryption Domain    CKPT:                  5.5.5.0/24
Encryption Domain   FW-Remote-1:   1.1.1.0/24
Encryption Domain   FW-Remote-2:   2.2.2.0/24

 

VPN1 : CKPT and FW-Remote-1     (5.5.5.0/24  - 1.1.1.0/24)

VPN2 : CKPT and FW-Remote-2    (5.5.5.0/24  - 2.2.2.0/24)

 

I would like the subnet 1.1.1.0/24 to communicate with 2.2.2.0/24 through my CKPT.

 

 

I found exactly what I want in cisco site:

https://community.cisco.com/t5/security-documents/how-to-configure-site-to-site-vpn-with-hairpinning...

 

But it's for cisco, and I didn't find anything with CKPT.

Do you know if it's possible?

 

Regards

0 Kudos
1 Reply
_Val_
Admin
Admin

Yes, it is possible through Star VPN community. Please refer to VPN guide for details.

0 Kudos