Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FW-1] Forwarding all traffic through a VPN

To: [email protected]
Subject: Re: [FW-1] Forwarding all traffic through a VPN
From: Geoffrey Moon <[email protected]>
Date: Wed, 17 Oct 2001 12:10:57 -0400
Reply-to: Mailing list for discussion of Firewall-1 <[email protected]>
Sender: Mailing list for discussion of Firewall-1 <[email protected]>

Great suggestion! I never thought about something simple like using a proxy.

Thanks!

Geoff

-----Original Message-----
From: Jörg Oertel [mailto:[email protected]]
Sent: Wednesday, October 17, 2001 3:51 AM
To: [email protected]
Subject: Re: [FW-1] Forwarding all traffic through a VPN

Geoffrey Moon schrieb:
>
> I have numerous VPNs (Sonicwalls) connecting my remote offices to my main
> site. All traffic bound for servers on the main site gets encrypted and
sent
> trough the tunnel, and everything works great. Just one problem - I want
all
> of my Internet browsing traffic from these remote sites to pass through my
> main site so it can be virus scanned, monitored and controlled from one
> central location.
>
> If my main site was a Sonicwall instead of FW1 it would be easy - they
seem
> to support forwarding all traffic through the VPN as part of the
> configuration. Is there any way to do this with FW1? It doesn't seem
> possible to define an encryption domain on the Checkpoint side that
includes
> the entire Internet. Am I missing something obvious here?
>
> Thanks,
>
> Geoff

Hi Geoff,

one solution could be to deny http requests to any www servers in the
internet on the sonicwalls. Allow http proxy connections to your FW-1.
Set up a HTTP security server as proxy on your FW-1 that accepts
connections from all clinets in the sonicwall'ed networks.
All clients must set the browser properties to use your FW-1 as proxy.

Kind regards/Mit freundlichen Grüßen
Jörg Oertel

--
Joerg Oertel            Tel:02225/8820
MOSAIC SOFTWARE AG      Fax:02225/882201
Feldstraße 8            e-mail:[email protected]
53340 Meckenheim        www.mosaic-ag.com

===============================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
===============================================

===============================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
===============================================

Prev by Date: Re: [FW-1] Radius + Ras +Firewall
Next by Date: [FW-1] URL filter
Previous by thread: Re: [FW-1] Forwarding all traffic through a VPN
Next by thread: [FW-1] [FW1] Problems between firewalls when not encrypting.
Index(es):
- Date
- Thread