Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Introduction
Introduction
Forcepoint GRE Guide | Forcepoint Web Security Cloud and Hybrid Solutions
Forcepoint GRE connectivity can be used to forward traffic from your network's edge devices to the Forcepoint cloud service over a GRE tunnel. This guide introduces the basics of Forcepoint's GRE solution, and provides information on planning and deploying GRE in your network.
Introduction to the Forcepoint GRE solution
Generic Routing Encapsulation (GRE) is a tunneling protocol used to encapsulate and route data via a virtual point-to-point connection. Forcepoint GRE supports manual end user authentication and transparent identification via NTLM. Transparent authentication allows users to browse the Internet without explicitly providing logon credentials.
Typical uses for the GRE service include providing Forcepoint Web Security Cloud/Hybrid protection for:
*
*
*
*
*
Benefits
Using GRE to forward traffic to the cloud service can provide a number of benefits. These include:
*
*
*
*
*
*
*
Capacity planning
Forcepoint GRE supports up to 5Gbps throughput per tunnel and 1,000,000 concurrent connections.
By default, tunnels are configured for 200Mbps throughput. Customers requiring more than the default can submit a request to Forcepoint Technical Support.
Supported devices
Most devices that support GRE tunneling, and that are able to forward port 80 and port 443 traffic to the tunnel, can be used with the service. Forcepoint recommends using the latest firmware for your device.
Redundancy and failover
By default, two Forcepoint points of presence are provided for GRE connectivity. Forcepoint strongly recommends configuring your device to fail over to a second point of presence (data center or local PoP) cluster to achieve geographic redundancy.
 
Note 
Point of Presence locations
Point of Presence (data center or local PoP) IP addresses for Forcepoint's GRE service are listed in the article IP addresses for GRE connectivity in the Forcepoint Knowledge Base.
To decide which points of presence are best for your environment, consider:
*
*
 
Note 
Use the Cloud Service Status option provided in the banner of the Cloud Security Gateway Portal for tunnel system status. You must first subscribe to the physical data center connected to the Points of Presence configured on the Web > Device Management page of the portal.

Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Introduction
Copyright 2022 Forcepoint. All rights reserved.