Using secondary IP for VPN termination

Forum|Forum|9 years ago
April 27, 2017
1 reply
3657 views

Hi,

We have two different 600C firewall clusters at 2 locations with different internet links.

Now, my query is can I have same secondary IP on both the firewall's WAN interface while primary IPs being unique on individual units.

Can anyone advise on this whether thisis going to work?

Regards,

Rahul

EMES

New Member

The firewalls will allow you to do it but because they secondary aren't unique traffic will not route properly.

ede_pfau

SuperUser

Strange question. Why would you want this?

And I agree, if you terminate the VPN on the identical secondary IP, how would the FGT know which of the 2 identical addresses you mean - the local or the remote one?

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded