<div>
U can try and get the remote site to change their domain by doing a NAT to other IP range.
</div>


U can try and get the remote site to change their domain by doing a NAT to other IP range.

<div>
<div class="content wysiwyg-content">
I am trying to create a site to site vpn with a 3rd party firewall. &nbsp;The main problem is that my encryption domain is configured as 172.16.0.0/16 and the 3rd parties is 172.16.56.0/25 (so there is an overlap). &nbsp;However, in actuality our encryption domain is actually only using 172.16.0.0/24 ip addresses. &nbsp;I can't adjust my encryption domain subnet as there areover 15 site to site vpns confgured and this would impact those vpns<br />
<br />
How can I configure a site to site vpn given that our subnets overlap? &nbsp;I found some documentation regarding making changes to my Checkpoint R62 user.def.NGCMP file (subnet per peer and subnet per range etc) but it seems a bit vague. &nbsp;Does anyone have suggestions on configuring this outside of changing my encryption domain which is not an option?<br />
<br />
<br />
Thanks
</div>
</div>


I am trying to create a site to site vpn with a 3rd party firewall.  The main problem is that my encryption domain is configured as 172.16.0.0/16 and the 3rd parties is 172.16.56.0/25 (so there is an overlap).  However, in actuality our encryption domain is actually only using 172.16.0.0/24 ip addresses.  I can't adjust my encryption domain subnet as there areover 15 site to site vpns confgured and this would impact those vpns

How can I configure a site to site vpn given that our subnets overlap?  I found some documentation regarding making changes to my Checkpoint R62 user.def.NGCMP file (subnet per peer and subnet per range etc) but it seems a bit vague.  Does anyone have suggestions on configuring this outside of changing my encryption domain which is not an option?


Thanks

Checkpoint site to site vpn overlapping subnet

Software firewalls, also known as host-based firewalls, provide a layer of software on one host that controls network traffic in and out of that single machine. Most operating systems now include firewall software, but many available software firewalls include central distribution, antivirus systems and disaster recovery.

Software Firewalls

A virtual private network (VPN) is a network that uses a public telecommunication infrastructure, such as the Internet, to provide remote offices or travelling users access to a central organizational network securely. VPNs encapsulate data transfers using secure cryptographic methods and other security mechanisms to ensure that only authorized users can access the network and that the data cannot be intercepted.