I am currently working with a R80.10 CheckPoint. I need to stablish a VPN connection with a peer (no checkpoint device), so I have to configure my side to allow this connection.
The problem is that this external peer has a dynamic IP address (which can be obtained by its FQDN). I am not sure if I have to use certificates to authenticate the peer or not, but I issued one .p12 file with cpca_client tool. I created an "Interoperable device" and y configure matching criteria options to check with the certificate.
My question is: Is the certificate necessary to authenticate the peer against the R80.10? If it is correct, Am i doing it correctly?