[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW-1] VPN Community lack of control based on direction flow ?
Checkpoint Gurus: We configure VPN community between Checkpoint and external inteoperable router. What we try to achieve is to pass telnet/ping traffic in clear text if it's initiated from firewall side to external router interface, but encrypted if it's initiated from network behind the external router. It seems VPN community can't have different control based on direction flow of the traffic. When we try to telnet to the external router, the firewall will try to encrypt according to the VPN rule, but the router external router's interface can't intepret. We did try to add a rule explicitly allow these traffic going through in clear text but VPN rule takes precedence somehow. The router doesn't support loopback interface and/or SSH. Please advise. Thanks Wayne __________________________________ Do you Yahoo!? Yahoo! SiteBuilder - Free, easy-to-use web site design software http://sitebuilder.yahoo.com ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] =================================================
|