[fw-wiz] Remote Access via Checkpoint VPN

From: Ludolph, Michel (Michel.Ludolph_at_atosorigin.com)
Date: 08/17/04

  • Next message: Kevin Kadow: "[fw-wiz] Gauntlet 6 "adaptive proxy"" 
    To: <firewall-wizards@honor.icsalabs.com>
Date: Tue, 17 Aug 2004 10:51:43 +0200

    Hello,

    I have the following setup up with Checkpoint FW-1:

    Internet------10.x.x.x--FW--10.x.x.x----- Internal network
                                    |
                                    |
                                    |
                            20.20.20.20 (DMZ)

    Pease note:
    - the external FW-interface has a private IP-address (10.x.x.x).
    - the DMZ FW-interface has a public IP-address (20.20.20.20 as an example)

    I would like to setup a VPN on the FW, to which a remote client can connect via the Internet, using SecureClient. According to Checkpoint documentation the VPN should bind to the FW-external interface. This is the problem, my FW-external interface has a private IP-address, which is not routable via the Internet. In order to make this working I would like the VPN to bind to the DMZ-interface (20.20.20.20) instead of the external interface.

    Has anyone setup such a VPN and does it work or do you have any suggestions?

    Thanks for your help.

    michelDOTludolphATatosoriginDOTcom
    _______________________________________________
    firewall-wizards mailing list
    firewall-wizards@honor.icsalabs.com
    http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

  • Next message: Kevin Kadow: "[fw-wiz] Gauntlet 6 "adaptive proxy""