If I create a FW-1 VPN to FW-1 VPN connection between my firewall and an external business partner, how do I then control what access those users at the external business partner can get access to (or can they then get access to everything in my network)?
Does the FW-1 ruleset get applied to the traffic after coming in from the tunnel? I assume this is the way it would work but don't know.
Also what about routing issues. My firewall has a default route to send all unknown traffic to the Internet. Do I now have to put a static route on my FW to direct traffic to a "Virtual" interface (the VPN tunnel)?
Any info will be greatly appreciated.
Padden, Greg.vcf