07-15-2013 09:04 PM
Is it possible to have multiple shared gateways when running virtual systems.
I'm essentially trying to have 1 physical interface, shared among virtual systems, with an IKE gateway configured on it, so I can have multiple IPSec VPN tunnels established on that interface (the tunnel interfaces will belong to different virtual systems). And another physical interface, shared among virtual systems, for internet connectivity. Is this possible?
07-16-2013 01:50 AM
Yes it is :
Confirmation :Ref : VSYS Shared Gateway Capacity Matrix
For Config Assistance :
07-16-2013 01:50 AM
Yes it is :
Confirmation :Ref : VSYS Shared Gateway Capacity Matrix
For Config Assistance :
07-16-2013 06:40 AM
Just words of cautions..
1. If you are planning to use VSYSs with shared gateway, The zone protection policy needs to apply on the shared gateway interface, you cannot apply it on the untrust external zone within the vsys because the untrust zone is a logical zone, it does not have a interface tied with the untrust zone inside the vsys. The problem is you will lost the ability to define specific zone protection setting per vsys, instead you will need to define a much higher setting on the shared gateway from the untrust to your trusted network, which completely defeat the purpose of vsys, that allow you to create vsys with specific setting without affect other vsys..
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
