Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FW1] Re: One-way VPN

To: <[email protected]>, <[email protected]>
Subject: [FW1] Re: One-way VPN
From: "Steve" <[email protected]>
Date: Sun, 15 Oct 2000 11:27:20 +0100
Sender: [email protected]

>
> Hi Steve,
>
> I have a couple of DMZs that users have to access from
> other sites across the VPN.  What I normally do is:
>
> 1.  Make sure the DMZ is in the encryption zone
> 2.  Set up encryption between sites, with no
> restrictions.

Done that.

> 3.  Place a rule above the encrypt rules, that blocks
> all packets to all of my encryption zones.  This rule
> is placed on the fw where the DMZ is.

Doing this the rulebase won't compile because this rule blocks the
encryption rules.

Unless I'm missing soemthing fundamental here.

-Steve




================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================

Prev by Date: [FW1] DNS problem
Next by Date: Re: [FW1] H323
Previous by thread: [FW1] re: One-way VPN
Next by thread: [FW1] RE: One-way VPN
Index(es):
- Date
- Thread