Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Checkpoint_UC_V
Explorer

Checkpoint VPN Tunnel

Hello All,

I have one generic question regarding the VPN tunnel.

I have two tunnels from the Secure Gateway but the encryption domains at the remote ends are overlapping. 

let's say remote A end has 10.0.0.0/16 and remote B has 10.1.0.0/24.

I have two suggestions,

1) I can create negate objects group 10.1..0.0/24 on remote A encryption.

2) Remote B encryption 10.1.0.0/24 is NATed to 20.20.20.0/24 on firewall. So can we only use 20.20.20.0/24 as a remote encryption domain on the VPN Tunnel?

kindly let me know your suggestions. Thank you in advance.

 

0 Kudos
1 Reply
PhoneBoy
Admin
Admin

It depends on if both sides are actually using 10.1.0.0/24 or not.
Generally, in these cases, you'll have to perform NAT like you describe.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events