General Information

About this Guide

This guide explains how to configure IPsec tunnels and service chain traffic from a device by VMware SD-WAN (VeloCloud) SD-WAN device to Check Point Harmony Connect.

These instructions refer to VeloCloud Orchestrator of version 3.2.2 and later.

About VeloCloud SD-WAN

SD-WAN by VeloCloud provides automatic deployment and improved performance over private, broadband Internet and LTE links for enterprises and service providers.

SD-WAN by VeloCloud is based on SDN and flexible. It addresses end-to-end automation, application continuity, branch transformation, and security from the data center to cloud to the edge.

Components and Moving Parts

This guide covers the use case when your branch offices are protected with Check Point through this topology:

LAN > VeloCloud Edge > VeloCloud Gateway > Harmony Connect > Internet.

About Check Point Harmony Connect

Check Point Harmony Connect is a cloud security platform that provides Check Point latest threat prevention and access control for branch offices. Companies can connect their present routing equipment or SD-WAN device to Harmony Connect without other dedicated hardware by Check Point. Harmony Connect is a full software-as-a-service solution that needs no customer maintenance.

Check Point security product line includes: preventing known attacks using reputation services, signatures and bot communication prevention, preventing unknown attacks using cloud-based sandboxing, an Access Control Policy including Content Awareness, HTTPS Inspection and Application Control, and a web-based management for security events and log monitoring, policy, and site configuration.

For more information, see the Harmony Connect Administration Guide.