Limitations of VPNs in Forcepoint Network Security Platform

These limitations apply to VPNs in Forcepoint Network Security Platform.

• You cannot use the same pair of endpoints for VPN tunnels in several configurations for a single Security Engine. For example:
  • You cannot use the same pair of endpoints l in two policy-based VPNs.
  • You cannot create two Route-based Tunnels elements that use the same pair of endpoints.
  • You cannot create a Route-based Tunnels element that uses the same pair of endpoints that is used in a VPN tunnel in a policy-based VPN.
• VPNs are not supported on layer 2 physical interfaces on Engines.
• VPNs are not supported on Layer 2 Engines.
• If your Forcepoint Network Security Platform installation is configured in a restricted operating mode to comply with regulatory requirements, some VPN options are not available to you.
• Version-specific limitations in supported features for different Forcepoint Network Security Platform versions are listed in the Release Notes for the versions you are using. The SMC automatically prevents the use of unsupported settings based on engine version.