IPv6 - does not work on
Checkpoint Gaia .. kernel is old .. IPv6 is not running properly
Clustering issue
Lab 12 Routed VPN and Domain Based VPN
Advanced VPN
Routed based VPN (go away?)
- unreliable internet connectivity
- direct connection between peer security gateways using VTI
- VTI (virtual Tunnel Interface) uses as the security gateway to encryption domain pf a peer secuirty gateway
Cofiguring VTI for Route based VPN gateway
Domain Based VPN
Control how VPN traffic is routed between Security gateways and Remote Access Clients.
A-GW -> IPSec_VPN -> Link Selection
Link Selection - Gateway A should talk to Gateway B via a specific Interface
IPSec VPN - Meshed Community property Advanced Settings Wired Mode
Wire Mode (a VPN that does not inspection (Stateful inspection or blade or performance)
Improves connectivity
firewall can be bypassed for VPN connections
Configured in 2 places:
community Properties
Security Gateway Property
