You
should attach the VPN box outside of the FW or on another FW interface. At
least that way you could control what type of traffic, and what destination, the
VPN box allowed into your network. If you attach the VPN box directly to
your internal Net you lose all control of the traffic.
HTH,
Duke Glover
desk = 813-978-5682
page = 888-510-6042
[EMAIL PROTECTED]
Verizon / Enterprise Information Protection Services
Duke Glover
desk = 813-978-5682
page = 888-510-6042
[EMAIL PROTECTED]
Verizon / Enterprise Information Protection Services
-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, October 18, 2000 10:24 AM
To: [EMAIL PROTECTED]
Subject: [FW1] Where to place a VPN gatewayHi All,Our company has decided to use the Nortell VPN gateway 4500 box. Our VPN group wants to put it outside of the firewall on the Internat and directly connect the other interface into the local network. Our VPN group has been told that the Nortel box is very secure!We would like to secure the vpn box and have the connection go through the firewall. What is the best place to put a vnp gateway?Here is the present scenarioInternet -----------------------------------------> FW ------------------------------------------------> Local Net| ^| || ||-------------------------------------------> VPN Gateway ------------------------------------- |Kamran
