Configuring the SD-WAN Device

When you create the site at Check Point Harmony Connect, on this site you must configure your branch office to route traffic through Harmony Connect.

Check Point creates the back-end architecture for tunneling the traffic from the branch device to the Internet.

Example:

To configure your branch device:

1. On the site thumbnail, click the Configure branch device button.

   Example:

   

   The Instructions window opens.

2. From the top field, select your SD-WAN branch office device.

3. Follow the instructions on the screen to get the IPsec configuration properties, pre-shared key, tunnel addresses, and the traffic routes.

   Example:

   

4. Click Close.

Best Practice: Check Point provides IPsec tunnels. To ensure high service reliability, Check Point recommends you to create and use two tunnels.

Configuring Citrix SD-WAN on the Edge Device

To configure Check Point Harmony Connect on your Citrix SD-WAN Device perform these steps:

1. Create the first IPsec/GRE tunnel protected by Check Point Harmony Connect.

2. Create the second IPsec/GRE tunnel protected by Check Point Harmony Connect.

3. Route all the traffic through the two protected tunnels.

4. Deploy the changes.

5. Test your configuration.

After that you can monitor the cybersecurity events.