Here are just some notes on the VPN clients that I have collected over time. These notes are applicable up to R75.30.
The Check Point mobile (fat client) licensing is covered under the mobile access blade. However, it is not configured under this blade. It is configured like a regular remote-access client with the rule base.
Check Point Mobile - IPSec vpn and mobile access required on gateway.
Only the SSL client is configured under the mobile access blade. Licensing is also under this blade for the SSL clients.
Endpoint security has a Check Point Endpoint Policy Management Software Blade. This is the most feature rich vpn client.
Endpoint security VPN - requires remote-access vpn on management and IPSec vpn on gateway.
SecuRemote is configured like a regular IPSEC remote-access. Office-mode is not part of the SecuRemote package.
secureremote - IPSec vpn required on the gateway.
Iphone/Ipad - need mobile access blade. comes with LDAP capability.
Important questions that you might want to ask, to determine what you might need:
1. Do you need LDAP authentication? (If "yes", they need the mobile access license)(If they need LDAP, they probably dont need Radius authentication)
2. Do you need Radius integrated with AD? (If "yes", they need the IPSec VPN license)
3. Will you do site-to-site vpn? (If "yes", they need the IPSec VPN license)
4. Will you do remote-acess vpn with your laptop? (If "yes", they need the IPSec VPN license)
5. Will you do remote-access vpn with your IPhone/IPad? (If "yes", they need the mobile access license)
6. Will you do remote-access vpn with your Android phone? (If "yes", they need the mobile access license)
No comments:
Post a Comment
Your comment will be reviewed for approval. Thank you for submitting your comments.