Configuring firewall B
VPN policy
To correspond to the IPsec policy, traffic has to come from the virtual network B Net-B-Virt and contact the virtual network A Net-A-Virt.
NAT policy
- Rule 1 allows translating traffic from real network B Net-B-Real to virtual network B Net-B-Virt before the IPsec module (Options column).
- Rule 2 allows redirecting packets going to virtual network B Net-B-Virt to internal real network B Net-B-Real.
Ensure that virtual and real networks have the same sub-network mask.
Filter policy