You might want to read this BEFORE you try anything this X!@#$!#$
http://www.faqs.org/faqs/cisco-networking-faq/section-24.html
You CANNOT expose 10.x address space to the Internet!!!!!
Ashish
-----Original Message-----
From: Ludolph, Michel [mailto:Michel.Ludolph_at_atosorigin.com]
Sent: Tuesday, August 17, 2004 4:52 AM
To: firewall-wizards_at_honor.icsalabs.com
Subject: [fw-wiz] Remote Access via Checkpoint VPN
Hello,
I have the following setup up with Checkpoint FW-1:
Internet------10.x.x.x--FW--10.x.x.x----- Internal network
|
|
|
20.20.20.20 (DMZ)
Pease note:
- the external FW-interface has a private IP-address (10.x.x.x).
- the DMZ FW-interface has a public IP-address (20.20.20.20 as an
example)
I would like to setup a VPN on the FW, to which a remote client can
connect via the Internet, using SecureClient. According to Checkpoint
documentation the VPN should bind to the FW-external interface. This is
the problem, my FW-external interface has a private IP-address, which is
not routable via the Internet. In order to make this working I would
like the VPN to bind to the DMZ-interface (20.20.20.20) instead of the
external interface.
Has anyone setup such a VPN and does it work or do you have any
suggestions?
Thanks for your help.
michelDOTludolphATatosoriginDOTcom
_______________________________________________
firewall-wizards mailing list
firewall-wizards_at_honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
_______________________________________________
firewall-wizards mailing list
firewall-wizards_at_honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Received on Aug 20 2004
Intro
