Hello,
We currently have a VSX environment running on version R80.40, which does not support VTI.
Therefore, the only viable solution is to use Domain-based VPN.
Our network configuration is as follows:
Our Networks => CheckPoint Gateway => 3rd Party Gateway (PaloAlto) => Internet
We aim to establish an IPsec VPN between our CheckPoint Gateway and the 3rd Party Gateway, where the tunnel IPs use private addresses.
Our objective is to route all our networks traffic through this VPN to access the internet.
this setup can be feasible?
We plan to implement a Star Community setup, using the third option in VPN routing, with the 3rd Party Gateway as the Center Gateway and our CheckPoint Gateway as the Satellite. However, on the CheckPoint Gateway, for the VPN domain on our side, we can define our networks, but on the other side, can we specify 0.0.0.0/0 as the VPN domain? will this configuration work?
Thank you.