Hi,
We need your suggestion in IPSec Tunnel Architecture, attaching architectural diagram fro your reference.
In the diagram we have mentioned incoming & outgoing traffic flow. Traffice from Remote Office to DC (ingress traffic) is indicated via Green arrow & Traffic from DC to Remote Office (egress traffic) is indicated via Red arrow.
We have performed below configuration:
For Ingress Traffic:-
1. In CP-3800, created static route to reach DMZ subnet traffic pointed to Palo Alto Interface.
2. In Palo Alto, created static route to reach DMZ subnet traffic pointed to CP-9100 interface.
3. DMZ Subnet Route advertied in CP-9100 via directly connected.
Also we have allowed traffic via security rules.
For Egress Traffic:-
1. In CP-9100, created static route to reach remote office network traffic pointed to Palo Alto Interface.
2. In Palo Alto, created static route to reach remote office network traffic pointed to CP-3800 interface.
Is any further configuration is required, need your suggestion.
| User | Count |
|---|---|
| 16 | |
| 10 | |
| 10 | |
| 8 | |
| 6 | |
| 3 | |
| 2 | |
| 2 | |
| 2 | |
| 1 |
Tue 16 Dec 2025 @ 05:00 PM (CET)
Under the Hood: CloudGuard Network Security for Oracle Cloud - Config and Autoscaling!Thu 18 Dec 2025 @ 10:00 AM (CET)
Cloud Architect Series - Building a Hybrid Mesh Security Strategy across cloudsTue 16 Dec 2025 @ 05:00 PM (CET)
Under the Hood: CloudGuard Network Security for Oracle Cloud - Config and Autoscaling!Thu 18 Dec 2025 @ 10:00 AM (CET)
Cloud Architect Series - Building a Hybrid Mesh Security Strategy across cloudsThu 08 Jan 2026 @ 05:00 PM (CET)
AI Security Masters Session 1: How AI is Reshaping Our World
