[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [FW1] IPSEC with same LAN ip ranges.
Hi,
We experiance the same problem, it is a routing issue.
One question that you have to ask your self:
How do you expect the firewall to know where to send the packet if you use the
same network internally and externaly ?
If you check your log you will see the Real IP adress of your pc beyond your Nat
Device.
We took a private Class C that was not beeing use internaly and subnet it to
255.255.255.248 ( for multiple site ), it just work like a breeze.
Good luck,
Sylvain Le Blanc
"LOLLIKE,THOMAS (HP-Denmark,ex1)" <[email protected]> on 01/17/2001 03:54:46
To: [email protected]
cc: (bcc: Sylvain Leblanc/MTD/BTG/Bombardier)
Subject: [FW1] IPSEC with same LAN ip ranges.
Dear all
If you are running FW-1 sp3 and SecuRemote build 4174, and are using IPSEC
encapsulated in UDP. It works fine with NAT, but not if the local LAN uses
the same privat network as behind the firewall. Does anyone knows if a case
like this can work.
SecureClient on LAN 10.1.1.0/24 - NAT router - public IP - CP 4.1 sp3 - LAN
10.1.1.0/24.
Best Regards
Thomas Lollike
mailto:[email protected]
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================