We have a similar arrangement with one piece missing from your scenario that might be different, you don't mention if they have desktops at the office on Network A.
If they do we accomplish what you want by having our users connect to the VPN, then they can remote desktop to their XP workstation at work. At that point it's like they are there, with all of the software they need and the connections to Network B as though they are at their desk on Network A. Works for us, YMMV... -----Original Message----- From: Ronny Nussbaum [mailto:[EMAIL PROTECTED] Sent: Wednesday, August 03, 2005 11:22 AM To: [email protected] Subject: [FW-1] Need some VPN help Greetings everyone. I have a situation that I never dealt with, and I'm wondering if you could help me. My VPN configuration is very simple. You may even envy me :) I currently have two R55s, with the latest HFAs, in two sides of the world, and they are VPNing between themselves with traditional VPN: Network A<---->Firewall A<---->Firewall B<---->Network B With this configuration, and some rules, hosts from Network A can communicate with hosts on Network B, and vice-versa. Cool. I also have VPN users on both ends, connecting with SecuRemote to their respective Firewall. Users on site A only connect to Firewall A with SecuRemote. Users on site B only connect to Firewall B with SecuRemote. I always wanted to know how I can make a VPN user connect to one Firewall, and then access servers on the OTHER Network. Something like that: VPN User<--->Internet<---->Firewall A<---->Firewall B<---->Network B Note that I don't want to have the VPN user authenticate to Firewall B. My requirement is that the user will enter Network B after passing through Firewall A first. I want the VPN user to access network B, after authenticating to Firewall A, and then have Firewall A transfer the packets to Firewall B on the already-established site to site VPN. How can this be done? I'll appreciate any help you can give me. Thanks -Ronny ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
