In this lab, we build a route-based HA VPN between GCP and a Check Point Firewall, using VTI and eBGP to exchange routes dynamically. Unlike Classic VPN, which is a policy-based VPN that uses encry...

In this lab, we build a site-to-site VPN between on-premises Check Point and Google Cloud Platform (GCP) using Classic VPN with static routing. This approach relies on encryption domains instead of...

In this lab, we build a site-to-site IPsec VPN between an on-premise firewall (Check Point) and AWS using a Virtual Private Gateway (VGW). The goal is to extend an on-prem network into an AWS VPC s...

AWS Transit Gateway is a centralized routing hub that connects multiple VPCs, VPNs, and on-prem networks through a single, scalable, highly available service. Instead of building many VPC-to-VPC pe...

AWS is Amazon’s cloud platform that provides on-demand compute, storage, networking, and security services. Instead of running hardware in a physical data center, we can deploy virtual infrastructu...

Google Cloud Platform (GCP) is a cloud infrastructure service that provides virtual machines, networking, and storage resources on demand. In this setup, we deploy a FortiGate VM as a routed firewa...

CoreXL enables the distribution of traffic inspection across multiple CPU cores, improving scalability and efficiency. SecureXL, on the other hand, accelerates packet handling by offloading connect...

Check Point vSNext in R82 is the modern evolution of VSX, designed to simplify virtualization of security gateways while improving scalability and management. Unlike legacy VSX, it introduces a mor...

Here’s the planned topology for BGP configuration across multiple firewalls Here’s the BGP configuration on the Core Switch side Here we can see the BGP is up and running show bgp s...

Here’s the planned topology for OSPF configuration across multiple firewalls On the Core Switch side, we enable OSPF on all required interfaces Here we can see the OSPF configuration is u...