I would give the Nortel a public IP. As the users connect to it then have them sent through the firewall. We currently run a setup like that. UDP port is 10001 by default I believe. The rest can be added with the IPSEC group. On Mon, 31 Jan 2005 09:53:50 -0600, Moon, Curtis <[EMAIL PROTECTED]> wrote: > Does anyone know how to configure FW-1(R55) on Windows 2003 server and an > Nortel VPN Extranet 2600 (Contivity) on internal network, so that a Nortel > software clients(external) can pass through a FW-1 firewall and connect to a > VPN Extranet 2600 (Contivity) Gateway (internal) (see schema below)? > > (1)Many Nortel VPN Clients --->Internet ---> (2)FW-1 (R55) Windows2003 > ---->(3)Nortel Contivity Extranet 2600 Gateway > > Just want the external Nortel Clients to pass through FW-1 to the Nortel > Contivity. If this can be done does it make sense? Is there an advantage to > passing the ipsec traffic throught FW-1 or would it be the same as just > allowing the Nortel Extranet 2600 to have a public ip address and just let > the Nortel Clients connect directly to the Extranet 2600 and then connect it > to our internal network? > > Thanks, > > Curtis Moon > > ================================================= > To set vacation, Out-Of-Office, or away messages, > send an email to [EMAIL PROTECTED] > in the BODY of the email add: > set fw-1-mailinglist nomail > ================================================= > To unsubscribe from this mailing list, > please see the instructions at > http://www.checkpoint.com/services/mailing.html > ================================================= > If you have any questions on how to change your > subscription options, email > [EMAIL PROTECTED] > ================================================= >
================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
