[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW-1] Forwarding all traffic through a VPN
Great suggestion! I never thought about something simple like using a proxy. Thanks! Geoff -----Original Message----- From: Jörg Oertel [mailto:[email protected]] Sent: Wednesday, October 17, 2001 3:51 AM To: [email protected] Subject: Re: [FW-1] Forwarding all traffic through a VPN Geoffrey Moon schrieb: > > I have numerous VPNs (Sonicwalls) connecting my remote offices to my main > site. All traffic bound for servers on the main site gets encrypted and sent > trough the tunnel, and everything works great. Just one problem - I want all > of my Internet browsing traffic from these remote sites to pass through my > main site so it can be virus scanned, monitored and controlled from one > central location. > > If my main site was a Sonicwall instead of FW1 it would be easy - they seem > to support forwarding all traffic through the VPN as part of the > configuration. Is there any way to do this with FW1? It doesn't seem > possible to define an encryption domain on the Checkpoint side that includes > the entire Internet. Am I missing something obvious here? > > Thanks, > > Geoff Hi Geoff, one solution could be to deny http requests to any www servers in the internet on the sonicwalls. Allow http proxy connections to your FW-1. Set up a HTTP security server as proxy on your FW-1 that accepts connections from all clinets in the sonicwall'ed networks. All clients must set the browser properties to use your FW-1 as proxy. Kind regards/Mit freundlichen Grüßen Jörg Oertel -- Joerg Oertel Tel:02225/8820 MOSAIC SOFTWARE AG Fax:02225/882201 Feldstraße 8 e-mail:[email protected] 53340 Meckenheim www.mosaic-ag.com =============================================== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html =============================================== =============================================== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ===============================================
|