[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW-1] General Question on SecuRemote and SecureClient
> PCs on two different home networks can have the same > IP address and successfully access the internal > network via Securemote. IP Pool NAT will assign a > unique internal address while the firewall keeps track > of the connection based on the valid IP of the client. > Because of FW-1's NAT/routing process, the firewall > will need a route to the home network directed towards > the Internet. > > FW-1 4.1 SP5/SR 4.1 SP5 This did not work before. If two clients had the same IP address, FW-1 got confused no matter what the valid IP addresses were. IP Pool NAT was designed for the sole purpose of MEP configurations. > > By not using IP Pool NAT, the IP Address used > > within the corporate network, is the same address on the > > home system. Will Checkpoint correctly route the traffic to the > > correct Remote PC, or will I likely run into difficulties. IP Pool NAT will also not help if the client has an IP address within the encryption domain. The SR traffic will not be encrypted or routed correctly. -don ================================================= To set vacation, Out Of Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] =================================================
|