This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Rafal_N
Contributor
‎2022-03-08 01:16 AM

VTI - VPN Tunnel ID only from 1 to 99???

Hello,

We are planning to migrate Site to Site VPN form Community Based to Route Based. In documentation R81 I notice that kind of statement that I wasn't aware before:

VPN Tunnel ID - Unique tunnel name (integer from 1 to 99).
Gaia automatically adds the prefix "vpnt" to the Tunnel ID (example: vnpt10).

https://sc1.checkpoint.com/documents/R81/WebAdminGuides/EN/CP_R81_Gaia_AdminGuide/Topics-GAG/VPN-Tun... 

Is it true that all gateways have limitation max 100 VPN tunnels Route Based only?

Rafal

5 Replies
Chris_Atkinson
Employee Employee
Employee
‎2022-03-08 05:40 PM

From a quick test on an R81 gateway the CLI allows you to configure more/higher VPN tunnel IDs.

For an official answer on what's supported please consult with TAC.

CCSM R77/R80/ELITE
0 Kudos
Rafal_N
Contributor
‎2022-03-09 12:49 AM
In response to Chris_Atkinson

I had even working vti 100+ with static route, but I have some strange issues with ospf. After recreating VTI with ID bellow 100 I manage to solve issue. I did dozens different changes and I don't have sure it was coincidence or is it real limitation.

0 Kudos
G_W_Albrecht
Legend Legend
Legend
‎2022-03-09 06:34 AM
In response to Chris_Atkinson

I think that the CLI/WebGUI differences alone would justify a new SK. 

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
the_rock
Legend
Legend
‎2022-03-08 07:51 PM

I did same test as Chris on R81.10 gateway and from cli, you can set higher number. In web UI, I believe only up to 99.

0 Kudos
G_W_Albrecht
Legend Legend
Legend
‎2022-03-09 05:35 AM

The only limitation i can find documented is: sk31631 - What is the maximum number of interfaces supported by Check Point software? and sk113247 - Maximum number of VLAN and VAPs for Gaia Embedded Appliances

Gaia default total numbers of Physical interfaces, VLAN and VTI interfaces on a machine: 1024

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events
    li.common.scroll-to.top