That is the default for IKE steve. You don't need to do anything special
when using IKE because it tunnels. FWZ would cause a little more work.
However the two illegal networks cannot have the same addressing scheme or
you have more NAT work to do on routers.
----- Original Message -----
From: "Steve" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Tuesday, August 29, 2000 9:40 AM
Subject: [FW1] VPN Between Two Illegal Networks
>
>
> Hi,
>
> Is it possible to set up a VPN between two illegal internal networks
> that
> routes across the Internet?
>
> Example:
>
> netA -- (le0) FWmachineA (le1) -- internet -- (le1) FWmachineB (le0) --
> netB
>
>
> Where:
>
> netA is an illegal internal network
> netB is an illegal internal network
>
> FWmachineA le1 has a valid Class C IP address
> FWmachineB le1 has a valid Class C IP address
>
> With an encrypted VPN how does a host on netA route to a host on netB
> (without using NAT - not enough class C addresses available)?
>
> Cheers,
>
> -Steve
>
>
>
>
> ========================================================================
> ========
> To unsubscribe from this mailing list, please see the instructions
> at
> http://www.checkpoint.com/services/mailing.html
> ========================================================================
> ========
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
