Re: WILL PAY. Need help to setup VPN between a PIX 506 and a Checkpoint 4.1 Firewall
- From: "Somebody." <somebody.@xxxxxxxxxxxxxxxxxxxxx>
- Date: Thu, 20 Apr 2006 10:00:46 -0400
"DerekC" <derekc@xxxxxxxxxxxxxxxxxxxx> wrote in message
news:1145535346.646334.296610@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Sorry for not being very specific. It is Exchange 5.5.
Security is not a major major concern (as the PIX restricts where
traffic comes from). Speed and equipment are. Remote PCs running
Outlook are not even authenicated by the domain where the Exchange 5.5
is. Remote PCs have to type in their passwords every time.
With DSL, everything works. We could map drives and outlook to EX5.5
but once the DSL is replaced by Comcast (and all the IPs for all
network objects in both the PIX and the checkpoint updated), no go for
mapping drives and outlook doesn't work. The reason is that Comcast
closed up many NETBIOS ports, etc. In that case VPN tunnel is needed.
Wow man, you were running netbios across the Internet? Highly insecure...
A garden variety VPN tunnel will work fine for OL connecting to EX55. It
will need to pass UDP as well as TCP if you want to recieve new mail
notifications.
Setting a tunnel up between a PIX and a Checkpoint shouldn't be all that
tough, have you tried yet? Just don't NAT into the tunnel, the actual
untranslated private IP's of the remote network willl appear on the local
network and vice versa. At the remote side, give them the local WINS server
addresses (ie across the vpn) so that they can resole all the local names,
and it should all work fine.
-Russ.
.
- References:
- Prev by Date: JOB:Sr. Security Engineer for a Columbia, SC client (CONTRACT)
- Next by Date: Re: Block google page cache at firewall?
- Previous by thread: Re: WILL PAY. Need help to setup VPN between a PIX 506 and a Checkpoint 4.1 Firewall
- Next by thread: Re: WILL PAY. Need help to setup VPN between a PIX 506 and a Checkpoint 4.1 Firewall
- Index(es):
