This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
le0costa
Explorer
‎2023-08-29 08:20 AM

One VTI two(2) ISP and 3rd party remote peer with one(1) ISP

Currently in 81.10, we have a SG Cluster with 2 nodes (Active passive mode).

We also have 2 ISPs (ISP A with 10Mb and ISP B with 5 Mb bandwidth) in our location and would like to configure a VPN with a 3rd party Interoperable Device. The peer side has only one ISP and we need redundancy on this configuration. Also, on top of redundacy, and active active configuration to gain throughput.

With static routing, we need help to identify a way to enable the firewall to see only one VTI having two s2s tunnels underneath it. We see this concept on other vendors, but we have some difficulty finding out documentation that allows this kind of scenario.

Can you help identify the correct setup or configuration for this scenarion?

Thanks guys.

Labels
0 Kudos
2 Replies
the_rock
Legend
Legend
‎2023-08-29 08:37 AM

Keep in mind, with ISPR on CP, if one link fails, other side will NEVER know about the new external IP address, unless its manually changed in the vpn link selection.

Andy

0 Kudos
le0costa
Explorer
‎2023-08-29 02:16 PM
In response to the_rock

On the other firewall we have the VPN setup with the TWO ISPs behind a virtual tunnel interface. 

 

There is in fact a doubt on how to configure it correctly on the CP to work transparently.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events