Home Page | Skip to Navigation | Skip to Content | Skip to Search | Skip to Footer

Home >   Check Point Forums >   Software Blades and Gateways >   vSEC

Thread: VPN with single NIC vSEC in Azure - only 1-way traffic

Welcome, Guest Help
Login Login
Guest Settings Guest Settings
This question is answered. Helpful answers available: 2. Correct answers available: 1.


Permlink Replies: 1 - Pages: 1 - Last Post: Mar 20, 2017 4:16 PM by: Jeroen Demets Threads: [ Previous | Next ]
Jeroen Demets

Posts: 14
Registered: 8/10/07
VPN with single NIC vSEC in Azure - only 1-way traffic
Posted: Mar 20, 2017 3:09 PM
 
  Click to reply to this thread Reply

Hi,
Iím trying to build a VPN between an on-prem Check Point gateway and a vSEC single NIC BYOL in Azure. It seems Iím able to but I can only receive traffic from VMís in the encryption domain of the vSEC. I can not send traffic towards them. I see every decrypt/encrypt action in both gateways but traffic never reaches those VMís.
I believe I have setup the UDRís correctly (like in the video of the sk109360) but it doesnít work.

Has anyone been able to set this up?
Jeroen

Jeroen Demets

Posts: 14
Registered: 8/10/07
Re: VPN with single NIC vSEC in Azure - only 1-way traffic
Posted: Mar 20, 2017 4:16 PM   in response to: Jeroen Demets
 
  Click to reply to this thread Reply

found it: I needed to enable IP forwarding on the firewall NIC

a bit weird though because it seemed the vSEC already forwarded IP's as the VM's behind the vSEC could access internet and my VM's though the VPN setup with the vSEC.

Legend
Expert: 751 + pts
Advanced: 301 - 750 pts
Enthusiast: 101 - 300 pts
Novice: 0 - 100 pts
Check Point
Helpful Answer (5 pts)
Correct Answer (10 pts)