Configuring firewall A

VPN policy 

To correspond to the IPSec policy, traffic has to come from the virtual network A Net-A-Virt and contact the virtual network B Net-B-Virt.

Ensure that the virtual and real networks have the same sub-network mask.

NAT policy 

  • Rule 1 allows translating traffic from real network A Net-A-Real to virtual network A Net-A-Virt before the IPSec module (Options column).
  • Rule 2 allows redirecting packets going to virtual network A Net-A-Virt to internal real network A Net-A-Real.

Filter policy