Connecting an SD-WAN Branch Office Device with Harmony Connect

For detailed instructions to integrate with a particular vendor, see the relevant Guide for Harmony Connect Integration to SD-WAN Software-Defined Wide Area Network - A virtual WAN architecture that allows enterprises to leverage any combination of transport services – including MPLS, LTE and broadband internet services – to securely connect users to applications. Providers.

Check Point supports third-party routers and SD-WAN devices with IPsec capability. It creates the back-end architecture to tunnel the traffic from the branch device to the internet or your corporate network. When you create the site at Check Point Harmony Connect, you must configure your SD-WAN device to route traffic through Harmony Connect.

To connect an SD-WAN device at your branch device with Harmony Connect:

1. On the site thumbnail, click Configure Branch Device.

   The Instructions window opens.

2. Select the instructions for your SD-WAN branch office device.

3. Follow the instructions to get the IPsec configuration properties, pre-shared key, tunnel addresses, and the traffic routes.

   Notes: To enhance the service reliability, Check Point recommends that you create and use two tunnels. If you use IPSec A protocol suite for securing IP communications by authenticating and encrypting each IP packet of a communication session. tunnels, Check Point provides the tunnel addresses as FQDN domains. If your branch device supports configuration of the tunnels as IP addresses, and not as FQDN domains, we strongly recommend that you contact Check Point Support with your configuration details. For more information about opening a support ticket for Harmony Connect, see sk154712. For more information about architecture scaling, refer to the relevant SD-WAN integration guides for your provider.

4. Configure your SD-WAN device. For more information, refer to the relevant document in the table.

   SD-WAN Module	Integration Guide Link
   Silver Peak SD-WAN	https://sc1.checkpoint.com/documents/Infinity_Portal/WebAdminGuides/EN/Silver-Peak-Integration/Topics-CGC-Silver-Peak/Introduction.htm
   VeloCloud SD-WAN	https://sc1.checkpoint.com/documents/Infinity_Portal/WebAdminGuides/EN/Harmony-Connect-VeloCloud-Integration-Guide/Default.htm
   Cisco SD-WAN	https://sc1.checkpoint.com/documents/Infinity_Portal/WebAdminGuides/EN/Harmony-Connect-Cisco-SD-WAN-Integration-Guide/Default.htm
   Citrix SD-WAN	https://sc1.checkpoint.com/documents/Infinity_Portal/WebAdminGuides/EN/Harmony-Connect-Citrix-SD-WAN-Integration-Guide/Default.htm
   Aruba SD-Branch	https://sc1.checkpoint.com/documents/Infinity_Portal/WebAdminGuides/EN/Aruba-Integration-Guide/Default.htm
   CloudGenix	https://sc1.checkpoint.com/documents/Infinity_Portal/WebAdminGuides/EN/Harmony-Connect-CloudGenix-Integration-Guide/Default.htm
   Cradlepoint	https://sc1.checkpoint.com/documents/Infinity_Portal/WebAdminGuides/EN/Harmony-Connect-Cradlepoint-Integration-Guide/Default.htm
   Microsoft Azure Virtual WAN	https://sc1.checkpoint.com/documents/Infinity_Portal/WebAdminGuides/EN/Harmony-Connect-Azure-Virtual-WAN/Default.htm
   Aryaka	https://sc1.checkpoint.com/documents/Infinity_Portal/WebAdminGuides/EN/Harmony-Connect-Aryaka-Integration-Guide/Default.htm
   Fortinet SD-WAN	https://sc1.checkpoint.com/documents/Infinity_Portal/WebAdminGuides/EN/Harmony-Connect-Fortinet-SD-WAN-Integration-Guide/Topics-CGC-Fortinet/Introduction.htm
   SMB Gateways	https://sc1.checkpoint.com/documents/Infinity_Portal/WebAdminGuides/EN/Harmony-Connect-SMB-Integration-Guide/Topics-CGC-CP-SMB/General-Information.htm
   Versa SD-WAN	https://sc1.checkpoint.com/documents/Infinity_Portal/WebAdminGuides/EN/Harmony-Connect-Versa-SD-WAN-Integration-Guide/Topics-CGC-Versa/General-Information.htm

5. When the traffic is connected, the site status changes from Waiting for traffic to Active.

6. Go to Logs to begin managing your site.