Configuration requirements
In this tutorial, the private networks of the 3 sites will be distinct (example: 192.168.0.0/24, 192.168.1.0/24 and 192.168.2.0/24).
The necessary network objects have been created on each of the sites to interlink:
- the public IP address of the Hub Firewall: Pub_FW_Hub,
- the local network of the Hub site: Private_Net_Hub,
- the public IP address of the Spoke A Firewall: Pub_FW_Spoke_A,
- the local network of the Spoke A site: Private_Net_Spoke_A,
- the public IP address of the Spoke B Firewall: Pub_FW_Spoke_B,
- the local network of the Spoke B site: Private_Net_Spoke_B.
Check that your PKI has been set up:
- There is a certification authority (CA),
- Certificates have been created for the Firewalls,
- The respective certificates have been imported on the Firewalls of the Spoke sites,
- The CA has been added to the list of trusted CAs on each of the Firewalls to interlink.