[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [FW1] Architecture for connecting multiple sites via VPN
Greetings! I am wondering what the best architecture is to connect multiple sites together with a VPN. I have four locations, and each needs to have a VPN into every other site. I know that I can certainly setup a VPN between every firewall, but this loads down the rule base and isn't scalable. Whenever I add another site, there will be numerous VPN's to configure. Is there some way to create a central hub site and link all the sites in this manner? Traffic would travel to the hub encrypted, then there would be a short unencrypted hop to the next firewall, where it would then be encrypted until reaching the destination network. Is this sort of split-tunnel VPN possible with Checkpoint 4.1? What would be the mechanism for routing the traffic at the hub between firewalls? Is it as simple as adding a few static routes on the firewalls? Many thanks for any ideas or suggestions on where to find more information about this. Joel ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|