Remote site: Cisco ASA with a public IP. The requirement is to use this public IP in the encryption domain (they do NAT on their end).
Our site: Check Point R80.40.
Traffic flow: from remote site.
When I create an interoperable object, can I use the IP address of the object in the encryption domain? Since I cannot chose interoperable object from VPN Domain > User defined shall I create a host with the same IP and use host object instead? Or specifying the external interface with IP assigned for the interoperable object and then choosing All IP Addresses behind Gateway is preferred? Or it's the same?