you may need to assign Network A addresses to your securemote clients or add the range used by clients in the firewallA and B for encryption domain....
On 8/3/05, Ronny Nussbaum <[EMAIL PROTECTED]> wrote: > Greetings everyone. > I have a situation that I never dealt with, and I'm wondering if you > could help me. > > My VPN configuration is very simple. You may even envy me :) > I currently have two R55s, with the latest HFAs, in two sides of the > world, and they are VPNing between themselves with traditional VPN: > > Network A<---->Firewall A<---->Firewall B<---->Network B > > With this configuration, and some rules, hosts from Network A can > communicate with hosts on Network B, and vice-versa. Cool. > > I also have VPN users on both ends, connecting with SecuRemote to > their respective Firewall. > Users on site A only connect to Firewall A with SecuRemote. > Users on site B only connect to Firewall B with SecuRemote. > > I always wanted to know how I can make a VPN user connect to one > Firewall, and then access servers on the OTHER Network. Something like > that: > > VPN User<--->Internet<---->Firewall A<---->Firewall B<---->Network B > > Note that I don't want to have the VPN user authenticate to Firewall B. > > My requirement is that the user will enter Network B after passing > through Firewall A first. I want the VPN user to access network B, > after authenticating to Firewall A, and then have Firewall A transfer > the packets to Firewall B on the already-established site to site VPN. > > How can this be done? > I'll appreciate any help you can give me. > > Thanks > > -Ronny > > ================================================= > To set vacation, Out-Of-Office, or away messages, > send an email to [EMAIL PROTECTED] > in the BODY of the email add: > set fw-1-mailinglist nomail > ================================================= > To unsubscribe from this mailing list, > please see the instructions at > http://www.checkpoint.com/services/mailing.html > ================================================= > If you have any questions on how to change your > subscription options, email > [EMAIL PROTECTED] > ================================================= > ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
