Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FW-1] FW to FW VPN Question

To: [email protected]
Subject: [FW-1] FW to FW VPN Question
From: "Morton, Matthew" <[email protected]>
Date: Fri, 30 Aug 2002 08:50:21 -0600
Reply-to: Mailing list for discussion of Firewall-1 <[email protected]>
Sender: Mailing list for discussion of Firewall-1 <[email protected]>

Title: FW to FW VPN Question

Hi all,
Question,
In a FW to FW vpn connecting as follows (LAN to LAN), how can I force all traffic through the vpn tunnel...in other words how do I avoid the local default route taking precedence over and routing encrypted traffic out the local ISP connection.

Remote Office: DSL connection to the internet and Checkpoint Firewall (Local Default Route is the FW which defaults to the local DSL connection)

Central Office: Several T1s to the internet and Checkpoint Firewall

All FWs are running Checkpoint NG FP2 using the same internal address space

We can create a rule to encrypt all traffic (local encryption domain to remote encryption domain) but local internet connections etc., still get routed out the local DSL link. We don't want any split tunneling happening at the remote site. Is it possible to make the rulebase action happen before the routing decision?

Any help is greatly appreciated.
Matt.

Prev by Date: Re: [FW-1] can't see logs based on "Origin" filter
Next by Date: [FW-1] Log Problems
Previous by thread: [FW-1] kernel: FW-1: fwconn_pending_intercept: ld_set_wto(conn_nsons) failed ??
Next by thread: Re: [FW-1] FW to FW VPN Question
Index(es):
- Date
- Thread