VPN - Two Gateways with Two Interoperable Devices (at Vendor)

kinghl — Mon, 23 Jan 2023 23:09:22 GMT

This is not a question, just a statement on how our setup is working....

Two checkpoint gateways and two interoperable devices, a total of four tunnels. Vendor setup is as four individual tunnels (not route based, called Domain or Policy Based). Trying with individual communities didn't work (as you need to create duplicate objects, support said it's a no no). Support had us create a star community with MEP selected. The vendor with the devices required us to be responder only, not initiator. Found in a post to turn off "Permanent Tunnels" under "Tunnel Management". Only two of the four tunnels came up. So we switched our star setup with center and satellite gateways and all four tunnels came up. I'll lay out the main items for the working setup....

Star Community

Interoperable devices were placed as Center Gateways

Checkpoint gateways were placed as Satellite Gateway

MEP was turned off

"Permanent Tunnels" was turned off

There can be other ways to do this but we can only play so much with a vendor. Hope this helps others.

Re: VPN - Two Gateways with Two Interoperable Devices (at Vendor)

PhoneBoy — Thu, 26 Jan 2023 01:31:13 GMT

Thanks for sharing!

topic Re: VPN - Two Gateways with Two Interoperable Devices (at Vendor) in Firewall and Security Management

VPN - Two Gateways with Two Interoperable Devices (at Vendor)

Re: VPN - Two Gateways with Two Interoperable Devices (at Vendor)