[Date Prev][Date Next][Thread Prev][Thread Next][Thread Index]

RE: [fw1-gurus] VPN With securemote behind nat

Subject: RE: [fw1-gurus] VPN With securemote behind nat
From: "Ezio Ricca" <ricca@xxxxxxxxxxxxx>
To: "'Kypros Politis'" <kpolitis@xxxxxxxxxxx>, <fw1-gurus@xxxxxxxxxxxxxxxxxx>
Date: Fri, 19 Dec 2003 11:31:18 +0100

> -----Original Message-----
> 
> > I have a customer that has a checkpoint ng fp3 firewall with an 
> > internal ip addressing on 10.0.0.0 / 255.0.0.0 . He has two remote 
> > offices the one with Internal ip addressing : 192.168.0.0 / 
> 24 and the 
> > second remote office with internal ip addressing : 
> 10.252.252.0 / 24 . 
> > The first office connects to with secure remote to the 
> checkpoint and 
> > establishes the vpn. The second office cannot establish the 
> vpn. Any 
> > Idea ? Is it because he is using the same ip addressing as the 
> > internal lan behind the firewall ?
> 

Yes, IP packets directed to the second remote office are delivered to
the internal lan.
You shold try to use IP NAT for the second remote office.

EZIO RICCA
Security Engineer
ricca@xxxxxxxxxxxxx

SHORR KAN IT ENGINEERING Srl
http://www.shorr-kan.com
Via Sestriere 28/a
10141 Torino
Mobile: +39 335 125 8909
Phone:  +39 011 382 8358
Fax:    +39 011 384 2028
 


---------------------------------------------------------------------
FireWall-1 Gurus Mailing List (http://www.phoneboy.com/gurus)
To unsubscribe, mailto:fw1-gurus-unsubscribe@xxxxxxxxxxxxxxxxxx
For additional commands, mailto:fw1-gurus-help@xxxxxxxxxxxxxxxxxx

References:
- [fw1-gurus] VPN With securemote behind nat
  - From: Kypros Politis

Prev by Date: AW: [fw1-gurus] VPN With securemote behind nat
Next by Date: [fw1-gurus] RE : VPN encryption domain
Previous by thread: [fw1-gurus] VPN With securemote behind nat
Next by thread: [fw1-gurus] Rückruf: [fw1-gurus] VPN With securemote behind nat
Index(es):
- Date
- Thread