Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FW1] NAT across a VPN

To: [email protected]
Subject: [FW1] NAT across a VPN
From: [email protected]
Date: Thu, 5 Oct 2000 09:07:26 -0500
Reply-to: [email protected]
Sender: [email protected]

Title: [FW1] NAT across a VPN

I read Frank's post and while I am testing this in our lab I wanted to see
if anyone had come up with a solution already.

Problem:
local-net 10.10.10.0
partner-net 10.10.10.0
IKE VPN

Is it possible to NAT either you or your partner -net, BEFORE or after it
crosses the VPN ?

Objective:
To allow a VPN between two companies without re-addressing either company.

Jon

Date: Wed, 4 Oct 2000 22:38:56 -0500
From: Frank Knobbe <[email protected]>
Subject: RE: [FW1] VPN + NAT

- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

For these types of VPN's you probably want to add two Translation
rules that disable NAT for connections through the VPN tunnel. The
two rules are:

MyNet - PartnerNet - Any - Original - Original - Any
PartnerNet - MyNet - Any - Original - Original - Any

Make sure you set routes in your network that directs traffic aimed
at the PartnerNet to your firewall.

Regards,
Frank

================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================

Prev by Date: [FW1] GUI Interface Error VPN-1 v4.1
Next by Date: [FW1] Firewall-1 License Violation
Previous by thread: [FW1] NAT across a VPN
Next by thread: RE: [FW1] NAT across a VPN
Index(es):
- Date
- Thread