The external interface is connected to the Internet and has a public IP address. LAB CONFIGURATIONĪs a central gateway we use a virtual machine with the Check Point version R77.30. Other modems and routers could be freely used. This document is based on Check Point appliance 2200, TP-LINK TL-MR 3040 which supports various 3G and 4G modems and USB 3G-modem Teleofis RX301 R4.
Specific to this configuration is an additional Hide NAT which prevents the connection from the Check Point Smart Center to the private IP address of the DAIP gateway in order to send the configuration and initiate a VPN connection.
As Check Point 2012 appliances do not support USB modems, an additional router will be used which supports USB 3G modems converting them to RJ-45. It connects to the Internet using a USB 3G modem. This document describes the specific configuration of Check Point appliances as a DAIP gateway (with Dynamically Assigned IP Address). How to Configure a VPN for DAIP Gateway Connected to Internet Using USB 3G-Modem
