NETWORK PRESENCE ABOUT SERVICES PRODUCTS TRAINING CONTACT US SEARCH SUPPORT
 


Search
display results
words begin  exact words  any words part 

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FW-1] VPN



Hi

What are you using to create the vpn with the branch offices? If you're
using FW-1 at all offices, then there shouldn't be any problem for the vpn
to allow direct communication between all three offices.

rich

-----Original Message-----
From: Mailing list for discussion of Firewall-1
[mailto:[email protected]]On Behalf Of Kevin
Reichhart
Sent: 06 March 2002 16:19
To: [email protected]
Subject: Re: [FW-1] VPN


having branch a communicate with branch b via the main office is good in
theory but doesn't work.  your second diagram is the proper way to do it and
as long as you're not paying someone to do the configuration for you, has no
additional costs.

for mobile clients, you need another license for one server.  they will
authenticate against your management server so that's the best place to put
it.  the license is free, just contact your reseller and they should be able
to get it for you.  there are no advantages to having remote users connect
to your branches.

-----Original Message-----
From: Reed Mohn, Anders [mailto:[email protected]]
Sent: Wednesday, March 06, 2002 10:26 AM
To: [email protected]
Subject: [FW-1] VPN


Wonder if anyone can give me a pointer in the right
direction here..

In order to connect two branch offices to one
main office (VPN) how should one set this up using FW-1?

Preferably, the two branches should be able to communicate
directly, but is this a more costly and complicated
solution than having them communicate through
the main office?

I am thinking:

       |Main| ---- |Branch A|
          |
          |
          |
       |Branch B|

versus

       |Main| --- |Branch A|
          |       /
          |      /
          |     /
       |Branch B|


And what about mobile clients? (min 20, max 50)
Would one buy a single set of licenses, or would one
license them for each firewall?
I'm guessing it's cheaper, or at least simpler, to connect all
mobile clients to one office, and have them communicate to
branches through that. But that would introduce performance
issues as well, I reckon.

Any advice/ideas appreciated.

Cheers,
Anders RM :)

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================



 
----------------------------------

ABOUT SERVICES PRODUCTS TRAINING CONTACT US SEARCH SUPPORT SITE MAP LEGAL
   All contents © 2004 Network Presence, LLC. All rights reserved.