About this Guide
This guide explains how to configure IPsec tunnels and service chain traffic from a Cisco SD-WAN (formerly known as Viptela) device to Check Point CloudGuard Connect.
These instructions refer to Cisco SD-WAN of version 18.3.7 and later.
About Cisco SD-WAN
Cisco SD-WAN is an open, programmable and scalable cloud scale architecture. Through Cisco vManage console you can quickly establish an SD-WAN overlay fabric to connect data centers, branches, campuses, and colocation facilities to improve network speed, security, and efficiency.
In this guide we will protect branch offices by creating 2 IPsec tunnels to Check Point CloudGuard Connect.
About Check Point CloudGuard Connect
Check PointCloudGuard Connect is a cloud security platform that provides Check Point latest threat prevention and access control for branch offices. Companies can connect their present routing equipment or SD-WAN device to CloudGuard Connect without other dedicated hardware by Check Point. CloudGuard Connect is a full software-as-a-service solution that needs no customer maintenance.
Check Point security product line includes: preventing known attacks using reputation services, signatures and bot communication prevention, preventing unknown attacks using cloud-based sandboxing, an Access Control Policy including Content Awareness, HTTPS Inspection and Application Control, and a web-based management for security events and log monitoring, policy, and site configuration.
For more information see CloudGuard Connect Administration Guide.