Which of the following is NOT a VPN routing option available in a star community?
Which of the following is NOT a VPN routing option available in a star community?
The available VPN routing options in a star community include 'To center, or through the center to other satellites, to Internet and other VPN targets,' and 'To center and to other satellites through center.' These options account for routing through the central gateway for either some or all traffic scenarios. 'To center only' is a minimal routing setup where only connections between the satellite and the central gateway are routed through the VPN. Therefore, 'To satellites through center only' is not a valid VPN routing option as it implies there is no direct path from the satellite to the center and fails to fit into the available options structure, making it incorrect.
A only correct answer
You right- tested on real smart-console
Attached is a screenshot of the available options: https://i.ibb.co/kx1jCrc/image-2023-09-24-120918886.png
A is correct answer.
A https://sc1.checkpoint.com/documents/R80/CP_R80BC_VPN/html_frameset.htm Configuring a Star VPN Community
Only A is correct, there is no option such as "To satellites through center only."
A and D are correct The explanation in admin guide On the VPN Routing page, Enable VPN routing for satellites section, select one of these options: To center and to other Satellites through center - This allows connectivity between the Security Gateways, for example if the spoke Security Gateways are DAIP Security Gateways, and the Hub is a Security Gateway with a static IP address. To center, or through the center to other satellites, to internet and other VPN targets - This allows connectivity between the Security Gateways as well as the ability to inspect all communication passing through the Hub to the Internet.
AD is the correct answer. Reference: https://sc1.checkpoint.com/documents/R80.10/WebAdminGuides/EN/CP_R80.10_SitetoSiteVPN_AdminGuide/html_frameset.htm?topic=documents/R80.10/WebAdminGuides/EN/CP_R80.10_SitetoSiteVPN_AdminGuide/136968 Configuring VPN Routing for Security Gateways in SmartConsole
VPN Routing Options To center only. No VPN routing actually occurs. Only connections between the satellite gateways and central gateway go through the VPN tunnel. Other connections are routed in the normal way To center and to other satellites through center. Use VPN routing for connection between satellites. Every packet passing from a satellite gateway to another satellite gateway is routed through the central gateway. Connection between satellite gateways and gateways that do not belong to the community are routed in the normal way. To center, or through the center to other satellites, to internet and other VPN targets. Use VPN routing for every connection a satellite gateway handles. Packets sent by a satellite gateway pass through the VPN tunnel to the central gateway before being routed to the destination address. https://sc1.checkpoint.com/documents/R80/CP_R80_SmartDashboard_OLH/html_frameset.htm?topic=documents/R80/CP_R80_SmartDashboard_OLH/xPIK8IRZF4anBq5LqvwFRQ2