hello all!
i would install a vpn edge box (in a little outlet from us, which is
connected over lan to our central location), which i have to use as firewall
to "one" (in the future ther could be two) customer connection. the traffic
should go (bidirectional) to and from the customer. for the traffic from me
to the customer (he has same ip´s) i have to use nat (static AND hide
nat´s).
--lan---/edgeA/(nat)--dmz_interf--/routerA/--LeasedLineA--....customerA
/routerA/--LeasedLineB--....customerB
a second box i would install as (cold standby) backup (with basic
configuration). in worst case, the backup box should be (physical) connected
and after a view minutes (auto-download the config fromt he smart center
(reached over the lan)) it shoud go online.
question 1:
could i use the dmz- or the wan-interface for this situation?
question 2:
does it work? i heard, that i couldn´t use it...(nat-problems, etc.)...
best regards,
no
--
5 GB Mailbox, 50 FreeSMS http://www.gmx.net/de/go/promail
+++ GMX - die erste Adresse für Mail, Message, More +++
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================
