I am going through the same thing. I ask you to consider these items... Will these users be VPNing into the network? if so, what VPN. If its Checkpoint, then perhaps secure remote may be an answer. Second, like antivirus, which should also be on your list, how will you update it remotely? Can you configure the firewall to never be disabled by the user?
Also, testing with your applications. perhaps you have specific applications that you will install on these roadwarriors. Will the firewall block or hinder their communications or functions. The Securitywriters Guild (www.securitywriters.org) is currently doing a honeynet@home project that focuses a little on roadwarriors and what they face. You may want to check out their results so you can see the torment their systems go through as well. Charles ________________________________________________________________ The information contained in this message is intended only for the recipient, may be privileged and confidential and protected from disclosure. If the reader of this message is not the intended recipient, or an employee or agent responsible for delivering this message to the intended recipient, please be aware that any dissemination or copying of this communication is strictly prohibited. If you have received this communication in error, please immediately notify us by replying to the message and deleting it from your computer. Thank you, Standard & Poor's
