Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
the_rock
Legend
Legend
Jump to solution

VPN question

Hey guys,

Apologize if this sounds like a really dumb question, but anyway, here it comes 🙂

Scenario...cluster with ISPR configured, so we need to create 4 vpn tunnels with Azure for testing, 2 for active link and 2 for backup. Question...is it SUPPORTED or even recommended to say have 2 vpn communities with SAME interoperable object IP (just a different name) and same cluster as center gateway? It did work when testing, policy succeeded, BUT, only 1 tunnel shows as UP and I guess logically its because both tunnels have same IP for interoperable object.

So, just curious, is this something anyone has tried before and made it work? We did open TAC case for this, but figured would see what community thinks 🙂

Best,

Andy

0 Kudos
1 Solution

Accepted Solutions
the_rock
Legend
Legend

TAC came back saying this is not supported way of doing it, which I sort of figured, but wanted to be 100% sure. They said you essentially need separate Azure VNG for each tunnel, so 4 in our case.

Best,

Andy

View solution in original post

0 Kudos
2 Replies
Lesley
Leader Leader
Leader

You will encounter I think this issue:

https://support.checkpoint.com/results/sk/sk36425

Also this maybe would help:

https://support.checkpoint.com/results/sk/sk32225

https://support.checkpoint.com/results/sk/sk92662

-------
If you like this post please give a thumbs up(kudo)! 🙂
0 Kudos
the_rock
Legend
Legend

TAC came back saying this is not supported way of doing it, which I sort of figured, but wanted to be 100% sure. They said you essentially need separate Azure VNG for each tunnel, so 4 in our case.

Best,

Andy

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events