Routing-Based VPN Support Using Tunnel Interfaces and Tunnel Zones Overview

A VPN requires a physical or virtual interface on the security device, and each security device supports a specific number of physical and virtual interfaces. To support multiple VPNs on a device, you might want to create tunnel interfaces and tunnel zones to increase the number of available interfaces on the device.

Note: VPN Manager automatically creates the necessary tunnel interfaces for route-based VPNs. For device-level VPNs, you can create the tunnel interfaces before or after creating the VPN.

If you do not need to do network address translation (NAT), use unnumbered interfaces.

For details on tunnel interfaces and tunnel zones, see Routing-Based VPN Support Using Tunnel Interfaces and Tunnel Zones Overview.

Related Documentation