| |
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[FW1] Architecture for connecting multiple sites via VPN
Greetings!
I am wondering what the best architecture is to connect multiple sites
together with a VPN.
I have four locations, and each needs to have a VPN into every other site.
I know that I can certainly setup a VPN between every firewall, but this
loads down the rule base and isn't scalable. Whenever I add another site,
there will be numerous VPN's to configure.
Is there some way to create a central hub site and link all the sites in
this manner? Traffic would travel to the hub encrypted, then there would
be a short unencrypted hop to the next firewall, where it would then be
encrypted until reaching the destination network.
Is this sort of split-tunnel VPN possible with Checkpoint 4.1? What would
be the mechanism for routing the traffic at the hub between firewalls? Is
it as simple as adding a few static routes on the firewalls?
Many thanks for any ideas or suggestions on where to find more information
about this.
Joel
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
|
|
