> I don't understand the problem. Is it that you can't even get an IP address > via DHCP when in the encryption domain and disconnected? if so, add a rule > allowing it for the group [EMAIL PROTECTED]
hi ray, no - when the SC is inside the enc domain the client receives an IP address from the configured IP pool what is not necessary. from inside the SC will logon on the policy server with the IP pool address and this connection will be dropped because of anti spoofing. Is there any way thx doehni >>hi list, >>ive got a question concerning when SC is inside the encryption domain. >> SC >>is working in "Connect Mode" and we have enabled the option that when the >>SC is disconnect all the traffic will be dropped. When SC is outside the enc domain the SC will get an IP address from the configured IP pool and the user can access hosts inside the enc domain. >>Is there any way without receiving an IP address from the IP pool when >> the >>SC is inside the enc domain? (only logon to policy server, the FW recognize that the SC is part of the encryption domain and traffic will >> be >>unencrypted between machines in the enc domain) >>thx >>doehni ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
