[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW-1] Forwarding all traffic through a VPN
Geoffrey Moon schrieb: > > I have numerous VPNs (Sonicwalls) connecting my remote offices to my main > site. All traffic bound for servers on the main site gets encrypted and sent > trough the tunnel, and everything works great. Just one problem - I want all > of my Internet browsing traffic from these remote sites to pass through my > main site so it can be virus scanned, monitored and controlled from one > central location. > > If my main site was a Sonicwall instead of FW1 it would be easy - they seem > to support forwarding all traffic through the VPN as part of the > configuration. Is there any way to do this with FW1? It doesn't seem > possible to define an encryption domain on the Checkpoint side that includes > the entire Internet. Am I missing something obvious here? > > Thanks, > > Geoff Hi Geoff, one solution could be to deny http requests to any www servers in the internet on the sonicwalls. Allow http proxy connections to your FW-1. Set up a HTTP security server as proxy on your FW-1 that accepts connections from all clinets in the sonicwall'ed networks. All clients must set the browser properties to use your FW-1 as proxy. Kind regards/Mit freundlichen Grüßen Jörg Oertel -- Joerg Oertel Tel:02225/8820 MOSAIC SOFTWARE AG Fax:02225/882201 Feldstraße 8 e-mail:[email protected] 53340 Meckenheim www.mosaic-ag.com =============================================== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ===============================================
|