CPUG: The Check Point User Group

Resources for the Check Point Community, by the Check Point Community.


Tim Hall has done it again! He has just released the 2nd edition of "Max Power".
Rather than get into details here, I urge you to check out this announcement post.
It's a massive upgrade, and well worth checking out. -E

 

Results 1 to 2 of 2

Thread: UTM-1 Edge W VPNs via 2 Internet Connections

  1. #1
    Join Date
    2013-02-22
    Posts
    23
    Rep Power
    0

    Default UTM-1 Edge W VPNs via 2 Internet Connections

    I have a site in Belgium that has had a new Internet connection installed to replace their existing connection with around 1 month before the original link is ceased.

    I need to remotely transfer their connection to the new link (and the VPNs that use it) over to the new connection. But as the existing VPN from my site in the UK is the only way that I can access the device, I am trying to establish a new VPN from another network in the UK to the Edge W using the new connection to enable me to switch everything over to use the new link without being 'cut off', but am not being successful.

    The original Internet connection is using the WAN port as the primary Internet connection.

    The new Internet connection is using the DMZ/WAN2 port as the secondary Internet connection.

    I have configured a VPN between the Edge W and a Cisco ASA in the UK using the secondary Internet IP address as the peer address on the ASA.

    The ASA says that the VPN has been established and can even transmit traffic (although none is received)

    The Edge W also says the VPN has been established, but says that it is using the primary Internet IP address rather than the secondary.

    I have a static route on the Edge W pointing to the UK encryption domain to go via the WAN2 port.

    Does anyone know how to get this VPN to use the secondary Internet connection rather than the primary?

  2. #2
    Join Date
    2006-03-24
    Location
    York, UK
    Posts
    60
    Rep Power
    14

    Default Re: UTM-1 Edge W VPNs via 2 Internet Connections

    Your static route should be to the external public IP in the UK and not to the encryption domain.

    Trevor

Similar Threads

  1. NAT for multiple gateways on different Internet connections
    By DZelenak in forum NAT (Network Address Translation)
    Replies: 2
    Last Post: 2014-10-17, 17:30
  2. Multiple Internet Connections
    By rmmagow in forum Topology Issues
    Replies: 0
    Last Post: 2011-01-21, 12:36
  3. Multiple public (Internet) IP's on Edge X ??
    By charlie809 in forum Check Point UTM-1 Edge Appliances
    Replies: 2
    Last Post: 2009-05-05, 11:10
  4. Traditional mode and Edge VPNs
    By AndyB in forum IPsec VPN Blade (Virtual Private Networks)
    Replies: 5
    Last Post: 2007-06-22, 19:32
  5. Two External Internet Connections
    By fishflaps in forum IPsec VPN Blade (Virtual Private Networks)
    Replies: 2
    Last Post: 2006-05-24, 13:33

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •