NETWORK PRESENCE ABOUT SERVICES PRODUCTS TRAINING CONTACT US SEARCH SUPPORT
 


Search
display results
words begin  exact words  any words part 

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FW-1] Antw: [FW-1] secureclient on NG



Thank you very much.

Rajesh.

>Mime-Version: 1.0
>Content-Disposition: inline
>Content-Transfer-Encoding: 8bit
>X-MIME-Autoconverted: from quoted-printable to 8bit by
beethoven.us.checkpoint.com id g3C740w3001939
>Date: Fri, 12 Apr 2002 08:58:36 +0200
>From: Tobias Wagner <[email protected]>
>Subject: [FW-1] Antw: [FW-1] secureclient on NG
>Comments: To: [email protected]
>To: [email protected]
>
>Hi Rajesh,
>
>the encryption Domain should be all the Networks, that the Client is allowed to
connect to it.
>You must only create a Group, that contains all allowed Networks and insert it
as Encryption Domain.
>For all Networks/Hosts that will be in the Encryption Domain, the Secure Server
creates a Rule in the Client Policy as shown:
>
>Source = Client
>Destination = Encryption Domain
>Action = Encrypt
>
>All other Traffic will be handled as configured in the Global Properties (Drop
or Bypass)
>The Client is also Creating Routing Tables on the Clients Workstation, to route
all Traffic destined to the Encryption Domain to the Virtuall Network Interface.
>
>I hope, this is the answer to your question.
>
>best regards
>
>Tobias Wagner
>
>>>> Rajesh <[email protected]> Freitag, 12. April 2002 05:25 >>>
>Hello Everyone,
>
>I've just upgraded Checkpoint Firewall from ver 4.1 to NG. I need
>to setup secureclient to all my dialup users. Could someone give me
>info on how to setup secureclient.
>
>Basically My network architecture is:
>
>                        INTERNET
>                           |
>                           |
>                           | 202.0.106.x
>                ---------------------
>                |                    |---------------DMZ2 (203.8.x.x)
>        --------|   FIREWALL         |
>        |       ---------------------
>        |               |
>        |               |
>        |               |
>      DMZ1              |
>      (192.231.x.x)     |
>                        |
>                        |
>                INTERNAL NETWORK (172.16.x.x) (NAT--202.0.106.x)
>
>
> Could someone give a hint to setup encryption domain. I've read phoneboy
doc's.
> It says I need to include all the networks behind firewall. Does it mean
> my internal network + DMZ1 +DMZ2 +202.0.106.x.
>
> I have 2 firewall objects (1 for the internal interface and the other one on
>the external interface). Which object do I need to edit.
>
> Any help would be really appreciated.
>
> Thanks,
> Rajesh.
>
>
>
>
>Unix System Administrator
>State Library of NSW
>Macquire Street
>Sydney - 2000
>
>Email: [email protected]
>Ph: 02-92731711
>
>
>
>====================================
>This email and any attachments to it are privileged and confidential.
>If you
>are not the intended recipient, please notify the sender and delete
>it. The
>contents of this email are not given or endorsed by the State Library
>of New
>South Wales unless otherwise indicated by an authorised officer of
>the
>Library. Copyright law may also apply to this contents of this email.
>====================================
>
>=================================================
>To set vacation, Out Of Office, or away messages,
>send an email to [email protected]
>in the BODY of the email add:
>set fw-1-mailinglist nomail
>=================================================
>To unsubscribe from this mailing list,
>please see the instructions at
>http://www.checkpoint.com/services/mailing.html
>=================================================
>If you have any questions on how to change your
>subscription options, email
>[email protected]
>=================================================
>
>=================================================
>To set vacation, Out Of Office, or away messages,
>send an email to [email protected]
>in the BODY of the email add:
>set fw-1-mailinglist nomail
>=================================================
>To unsubscribe from this mailing list,
>please see the instructions at
>http://www.checkpoint.com/services/mailing.html
>=================================================
>If you have any questions on how to change your
>subscription options, email
>[email protected]
>=================================================


Unix System Administrator
State Library of NSW
Macquire Street
Sydney - 2000

Email: [email protected]
Ph: 02-92731711



====================================
This email and any attachments to it are privileged and confidential.
If you
are not the intended recipient, please notify the sender and delete
it. The
contents of this email are not given or endorsed by the State Library
of New
South Wales unless otherwise indicated by an authorised officer of
the
Library. Copyright law may also apply to this contents of this email.
====================================

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================



 
----------------------------------

ABOUT SERVICES PRODUCTS TRAINING CONTACT US SEARCH SUPPORT SITE MAP LEGAL
   All contents © 2004 Network Presence, LLC. All rights reserved.