You are using an IPV6 environment and find that you need additional access control and want to set up some directional VPN rules. How can you restrict access based on destination?
A. This can only be done in Traditional Mode VPN.
B. Directional VPN enforcement feature is not supported for IPv6.
C. Enable Global Properties > Advanced > IPv6 for directional VPN enforcement.
D. Set your rule match to "All_gwtogw" and create a new rule.
B
even in R80.10, this feature is still not supported. search “IPv6 Support and Limitations”
https://sc1.checkpoint.com/documents/R80.10/WebAdminGuides/EN/CP_R80.10_SitetoSiteVPN_AdminGuide/html_frameset.htm?topic=documents/R80.10/WebAdminGuides/EN/CP_R80.10_SitetoSiteVPN_AdminGuide/137045
B
search “IPv6 Support and Limitations” in http://dl3.checkpoint.com/paid/5d/5d9b6700af66226db3931b10f4d9327d/CP_R77_VPN_AdminGuide.pdf?HashKey=1552119290_479d6a0709a344d30a098b6dc722d765&xtn=.pdf
Note: even in R80.10 this feature is still not supported.
https://sc1.checkpoint.com/documents/R80.10/WebAdminGuides/EN/CP_R80.10_SitetoSiteVPN_AdminGuide/html_frameset.htm?topic=documents/R80.10/WebAdminGuides/EN/CP_R80.10_SitetoSiteVPN_AdminGuide/137045