How to Connect Forcepoint NGFW to Forcepoint ONE Cloud over IPsec Tunnel
  1. Home
  2. Introduction

    Forcepoint ONE SSE Cloud SWG solution enables web traffic filtering when a SmartEdge agent cannot be deployed on the end user's machine, such as for Guest users or IoT devices or when the organization does not want to deploy an agent.

  3. Audience

    Defines the audience of this document.

  • Introduction

    Forcepoint ONE SSE Cloud SWG solution enables web traffic filtering when a SmartEdge agent cannot be deployed on the end user's machine, such as for Guest users or IoT devices or when the organization does not want to deploy an agent.

    • IPsec overview

      IPsec is an extension to the IP protocol that provides secure traffic tunneling by authenticating and encrypting information sent over a network.

    • Throughput

      For Forcepoint ONE SSE Cloud SWG, Forcepoint allocates 0.1 megabits per second (Mbps) per licensed user per virtual datacenter.

    • Audience

      Defines the audience of this document.

  • Configurations in Forcepoint ONE SSE portal

    This section details the configurations required to setup IPsec tunnel in Forcepoint ONE SSE portal.

  • Configurations on Forcepoint NGFW

    These instructions explain how to forward web traffic from the Forcepoint NGFW site through the Forcepoint ONE SSE cloud proxy service using policy-based IPsec VPN.

  • Verifying high availability failover

    For each site you add, it is important to ensure that the High Availability (HA) failover capability is provisioned and configured correctly such that failover happens successfully when required.

  • Installing Root Certificate

    You may get an error Software is Preventing Firefox from safely connecting to site while accessing websites on Mozilla Firefox if the user is enforced to authenticate using the domain's identity provider.

Audience

Defines the audience of this document.

This document is intended for users:
  • Who are expert network engineers and have prior experience in configuring GRE and IPsec tunnels on various edge devices (Firewalls and routers).
  • Who would like to know about GRE or IPsec tunnel configurations on the Forcepoint ONE SSE portal and on the edge devices.

Related Documentation

  • Forcepoint ONE SSE Deployment Guide
  • Forcepoint NGFW Documentation
  • FlexEdge Secure SD-WAN Documentation

Copyright © 2024 Forcepoint LLC