hi all,
let's imagine I'd like to build a vpn between a checkpoint and a third
party gateway.
I'd like to send trafic from 3 internal networks to 3 remote networks.
internal nets are 172.16.1.0/24, 172.16.20.0/24 and 10.0.0.0/24
remote nets are 192.168.1.0/24, 192.168.10.0/24 and 10.0.10.0/24
(so no overlapping).
the remote gateway has vpn phase 2 definitions for 192.168.1.0 vs
172.16.1.0, 192.168.10.0 vs 172.16.20.0
and 10.0.10.0 vs 10.0.0.0.
I can set the topology for each gateway to a group of networks, but how
will the proxy id
be calculated when the vpn is established (local networks initiate the
vpn community) ?
are there any recommendations regarding the vpn tunnels (one tunnel per
host pair, one tunnel per network pair or one per gayteway pairs) ?
could it be a good idea to switch to route based vpn in such a scenario ?
thanks.
Scanned by Check Point Total Security Gateway.
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================
