NG FAQ - Problem with overlapping VPN Domain

*Platform:*	Any for Check Point NG
*Product:*	Check Point Next Generation AI
Problem:	You have configured a VPN or access for SecuRemote / SecureClient - and the rulebase will not install due to an "Overlapping Encryption Domain".
*Workaround/Fix:*	Esp. when configuring access for the VPN-Clients using more than one Gateway, the Encryption Domains of these Gateways must not overlap. To find the overlap, use the command vpn overlap_encdom [communities\|traditional] Example: #> vpn overlap_encdom The objects MyFirewall and MyCluster have overlapping encryption domains. The overlap domain is: 10.1.2.0 - 10.1.2.255

Check Point VPN-1/FireWall-1