[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [FW1] Re: One-way VPN
> > Hi Steve, > > I have a couple of DMZs that users have to access from > other sites across the VPN. What I normally do is: > > 1. Make sure the DMZ is in the encryption zone > 2. Set up encryption between sites, with no > restrictions. Done that. > 3. Place a rule above the encrypt rules, that blocks > all packets to all of my encryption zones. This rule > is placed on the fw where the DMZ is. Doing this the rulebase won't compile because this rule blocks the encryption rules. Unless I'm missing soemthing fundamental here. -Steve ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|