Gateway Side Configuration

Before a user can connect to the Security Gateway with a Check Point Remote Access VPN client, the system administrator must configure these settings:

1. Security Gateway Configuration: Configure the Security Gateway to allow Remote Access VPN connections. Configure the necessary VPN policies, authentication methods, and access control rules for the Security Gateway.

2. VPN Server Address: Provide the server address or hostname of the VPN Gateway to users. Users need this information to connect to the correct VPN Gateway.

3. Authentication Method: Specify the authentication method for the Remote Access VPN client to use. Give users the necessary credentials or certificates. Common authentication methods:

   • username/password authentication

   • certificate-based authentication

   • multi-factor authentication

4. VPN Client Configuration File: You can preconfigure Remote Access VPN client settings in a configuration file that you provide to users. Users can import this file into the Remote Access VPN client to make configuration easier. Examples of settings you can predefine in the configuration file:

   • encryption algorithms

   • DNS settings

   • split tunneling options

5. Network Access Permissions: Define the network resources and permissions available to users connected through VPN. Specify which subnets, servers, applications, or servers users can access when they connect to the VPN Gateway.

For more information, see the Remote Access VPN Administration Guide for your version.