Check Point Integration Guide
    : Create an IPsec Profile
    Focus
    Download PDF
    Focus
    1. Home
    2. Prisma
    3. Prisma SD-WAN
    4. CloudBlades Integration and Deployment
    5. Check Point Integration Guide
    6. Set up Prisma SD-WAN Overview
    7. Create an IPsec Profile
    Download PDF

    Check Point Integration Guide

    Create an IPsec Profile

    Table of Contents

    Create an IPsec Profile

    To create an IPsec Profile:
    1. Navigate to PoliciesStacked Policies.
    2. Click IPsec Profiles.
    3. Click Add IPsec Profile.
      A wizard for adding an IPsec profile will display.
    4. Define a name and description, and click Next.
    5. Edit the IKE settings of the IPsec profile.
      • Key Exchange should be set to IKEv2. IKEv1 is also supported.
      • DH Group should be set to MODP-1024.
      • Encryption should be set to AES-256.
      • Hash should be set to SHA-1.
      • DPD should be enabled.
    6. Click Next.
    7. Edit the ESP Group settings.
      • Encapsulation should be set to Force UDP
      • At the Proposals section, there should be 1 proposal with the following settings:
        • DH Group should be set to None
        • Encryption should be set to AES-256
        • Hash should be set to SHA-1
    8. Click Next.
    9. Edit the Authentication settings.
      • Type should be set to PSK.
      • Secret should be set to the pre-shared key of the Check Point Site that you copied at the previous steps.
      • Local ID type should be set to Interface IP Address
    10. Click Next, review the settings of the profile, then click Save & Exit.

    © 2024 Palo Alto Networks, Inc. All rights reserved.