Configuring VPN Sites
R81.10.X Quantum Spark 1500, 1600, 1800, 1900, 2000 Appliances Locally Managed Administration Guide|347
To configure a gateway as a satellite:
1. Select the VPN site from the list.
2. Click Edit.
The Edit VPN Site window opens.
3. In the Remote Site tab:
n
For Connection type, enter the IP address which is the public IP of the remote
peer (center gateway).
n
In the Encryption domain, select Route all traffic through this site.
4. Click Apply
This gateway is now designated as a satellite.
You can configure more than one satellite gateway to route all traffic through the center
gateway.
If you try to configure two gateways to be the center, an error message shows.
If you do not configure one gateway as a center, the site to site VPN acts like a mesh
community and each gateway continues to handle its own traffic.
To run a tunnel test with a remote site:
Check Point uses a proprietary protocol to test if VPN tunnels are active. It supports any
site-to-site VPN configuration.
Tunnel testing requires two Security Gateways and uses UDP port 18234. Check Point
tunnel testing protocol does not support 3rd party Security Gateways.
1. Select an existing site from the list.
2. Click Test.
To edit a VPN site:
1. Select the VPN site from the list.
2. Click Edit.
3. Make the relevant changes and click Apply.
To Next Page
Loading...
