Gateway is R80.40 and I have bunch of endpoint security VPN clients.
hub mode is NOT enabled.
For example I want that checkpoint.com would be part of encryption domain. The problem is that I cannot add domain or any other clever object into encryption domain. Only host or network objects allowed.
Do you have any ideas how it could be implemented easily? Maybe someone already got script working in action?
I was thinking of resolving domain to IPs and then feeding them to API to create objects and pushing the policy. On next client connect new topology should be downloaded.