Good Day, Our OWA server address falls within the VPN Gateway's (NG FP2) encryption domain, a class B network address (e.g. 10.10.0.0/16). We allow non-vpn https traffic to the server, which is not behind VPN firewalls. Problem is, any user with Secureclient running cannot connect to OWA server unless they do one of 2 things:
1) close/kill vpn client 2) login to vpn gateway and use vpn tunnel to access owa. The idea is to allow OWA access without requiring VPN authentication or having to kill the SR client We'd like to know how to get secureclient to realize that traffic for this host (10.10.0.1/32) should not be encrypted, essentially creating an "exception" for this host from the encryption domain. We'd like to do this without having to create lots(!) of class c network address objects for an encryption domain group. Any ideas are appreciated. thanks! Ken Ryan Network Engineer Viacom, Inc. ================================================= To set vacation, Out Of Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
