The self-paced training video for NGF04301 Advanced VPN mentions using transfer networks for identical subnets on both sides of VPN. He mentions only needing 2 MAP statements, 1 on each firewall. Does anyone have more details? We acquired an office and have a need to do this.
Posted 26 April 2018 - 03:45 AM
You can use a combination of MAP access rules and NAT-Tables in the access rules to translate the respective networks to a transfer network. This lets you address the "other" site using a different networks, which are transparently rewritten on the firewall to allow you to continue using identical networks at both sites.