1. Checkpoint configuration

a. Set up Checkpoint Gateway IPv4 address as the peer address showing in the cisco router.

b. Create a new Interoperable Device for Cisco Router

c. ISAKMP Settings and IPSec Settings

d. Pre-shared key

 e. Advanced ISAKMP Configurations and IPSec Configurations

f. Set up access-list

2. Cisco Router Configuration

crypto isakmp policy 10
 encr aes 256
 authentication pre-share
 group 2

crypto isakmp key cisco1234 address
crypto ipsec transform-set VPN1 esp-aes esp-sha-hmac
crypto map VPN-MAP 10 ipsec-isakmp
 set peer
 set transform-set VPN1
 match address ACL-VPN
interface GigabitEthernet0/0
 ip address
 crypto map VPN-MAP

ip route
ip access-list extended ACL-VPN
 permit ip

By Jon

One thought on “VPN Lab between Cisco Router and Checkpoint Firewall”

Leave a Reply