Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
nflnetwork29
Advisor

Site 2 Site VPN - Rule placement

What is the best practice for vpn tunnel rule placement? Should it go at the very top of my firewall policy ?

 

Above or below my stealth rule? Does it matter?

0 Kudos
3 Replies
the_rock
Legend
Legend

I would say towards the top, I always found works best, just to be safe.

0 Kudos
Vladimir
Champion
Champion

I do not think that it should matter, since VPNs are governed by VPN Communities and implied rules.

Decrypt is happening  before access control policy and encrypt after.

 

0 Kudos
the_rock
Legend
Legend

Thats true, you are 100% correct. I still personally prefer to put them towards the top of the rulebase.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events