This article describes how to whitelist your Check Point SASE Gateway at the Microsoft Azure Portal, which allows you to restrict access to a certain resource within an Azure Virtual Network to users connected to the secure Check Point SASE gateway only. While this method needs to be applied to every particular resource, it is a good alternative for those who'd like to avoid setting up a Site-to-Site connection to a VNet.
- Open the Azure Portal and select the resource which you'd like to restrict access to.
- Navigate to the Networking tab and select Add inbound port rule.
- Fill in the following information:
- Source: IP Addresses
- Source IP addresses/CIDR ranges: Insert you Check Point SASE Gateway IP
- Source port ranges: (all)
- Destination: Any
- Destination port ranges: (all)
- Protocol: Any
- Action: Allow
- Priority: Leave default value
- Name: P81
- Description: Optional
- Select Add Rule.