https://community.checkpoint.com/t5/Cloud-Firewall/R77-30-VPN-to-AWS-Manually-defined-encryption-domain-subnet/m-p/24247#M3934 <HTML><HEAD></HEAD><BODY><P>You can try some of the solutions listed here:</P><P><A class="link-titled" href="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk106837&amp;partition=General&amp;product=IPSec" title="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk106837&amp;partition=General&amp;product=IPSec">Troubleshooting Overlapping Encryption Domains Issues</A>&nbsp;</P><P>If I recall correctly, I've used some crazy NAT rules to phantom objects to overcome similar issue.</P></BODY></HTML> Fri, 19 Jan 2018 19:00:45 GMT Vladimir 2018-01-19T19:00:45Z https://community.checkpoint.com/t5/Cloud-Firewall/R77-30-VPN-to-AWS-Manually-defined-encryption-domain-subnet/m-p/24246#M3933 <HTML><HEAD></HEAD><BODY><P>Hi Folks,</P><P></P><P>I was hoping you could help me out with a query. I'm in the process of setting up a VPN to Amazon AWS. Following the checkpoint guide below.</P><P></P><P>Solution ID: sk100726</P><P><A class="link-titled" href="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk100726" title="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk100726">How to configure IPsec VPN tunnel between Check Point Security Gateway and Amazon Web Services VPC using static routes</A>&nbsp;</P><P></P><P>I had a question around the statement below:</P><P></P><P><IMG class="image-1 jive-image" src="https://community.checkpoint.com/legacyfs/online/checkpoint/62173_pastedImage_2.png" style="width: 620px; height: 47px;" /></P><P></P><P>What needs to be done in the instance that a local network that will be served by the AWS VPN is already defined manually as part of another existing VPN domain on the R77.30 cluster?</P><P></P><P>I am unable to remove it from the existing VPN domain as per the instruction because the local subnet will continue to require access via the existing VPN.</P><P></P><P>Thanks in advance guys.</P></BODY></HTML> Fri, 19 Jan 2018 10:09:11 GMT https://community.checkpoint.com/t5/Cloud-Firewall/R77-30-VPN-to-AWS-Manually-defined-encryption-domain-subnet/m-p/24246#M3933 Denis_Clancy 2018-01-19T10:09:11Z https://community.checkpoint.com/t5/Cloud-Firewall/R77-30-VPN-to-AWS-Manually-defined-encryption-domain-subnet/m-p/24247#M3934 <HTML><HEAD></HEAD><BODY><P>You can try some of the solutions listed here:</P><P><A class="link-titled" href="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk106837&amp;partition=General&amp;product=IPSec" title="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk106837&amp;partition=General&amp;product=IPSec">Troubleshooting Overlapping Encryption Domains Issues</A>&nbsp;</P><P>If I recall correctly, I've used some crazy NAT rules to phantom objects to overcome similar issue.</P></BODY></HTML> Fri, 19 Jan 2018 19:00:45 GMT https://community.checkpoint.com/t5/Cloud-Firewall/R77-30-VPN-to-AWS-Manually-defined-encryption-domain-subnet/m-p/24247#M3934 Vladimir 2018-01-19T19:00:45Z https://community.checkpoint.com/t5/Cloud-Firewall/R77-30-VPN-to-AWS-Manually-defined-encryption-domain-subnet/m-p/24248#M3935 <HTML><HEAD></HEAD><BODY><P>Thank Vladimir, I'll dig through that article.</P><P>Denis</P></BODY></HTML> Mon, 22 Jan 2018 09:48:55 GMT https://community.checkpoint.com/t5/Cloud-Firewall/R77-30-VPN-to-AWS-Manually-defined-encryption-domain-subnet/m-p/24248#M3935 Denis_Clancy 2018-01-22T09:48:55Z