[FW-1] web traffic through IPSEC tunnel.

2013-10-11 Thread tasneemjan
I am using R77 and have a ip sec tunnel to a cloud service for anti-x filtering. I have rule at the top to send all http/s traffic through the community. after 1st rule i have rule for internal networks to be natted behind the gateways public interface. When i initiate the http traffic it

Re: [FW-1] web traffic through IPSEC tunnel.

2013-10-11 Thread Alexey Baltacov
Hi There is a big chance u have problem with encryption domain configuration Just check the addresses again and u will find On Oct 11, 2013 10:51 AM, tasneemjan tasneem...@aim.com wrote: I am using R77 and have a ip sec tunnel to a cloud service for anti-x filtering. I have rule at the top to

Re: [FW-1] 1] web traffic through IPSEC tunnel.

2013-10-11 Thread Alexey Baltacov
Is ur encryption domain configured correctly On Oct 11, 2013 2:38 PM, tasneemjan tasneem...@aim.com wrote: I have checked the encryption domain which is correctly setup as the subnet I want to send through the ipsec tunnel. Regards -Original Message- From: Alexey Baltacov

Re: [FW-1] 1] web traffic through IPSEC tunnel.

2013-10-11 Thread tasneemjan
I have checked the encryption domain which is correctly setup as the subnet I want to send through the ipsec tunnel. Regards -Original Message- From: Alexey Baltacov drongt...@gmail.com To: FW-1-MAILINGLIST FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM Sent: Fri, Oct 11, 2013 9:42 am

Re: [FW-1] 1] 1] web traffic through IPSEC tunnel.

2013-10-11 Thread tasneemjan
yes the encryption domain is setup correctly regards -Original Message- From: Alexey Baltacov drongt...@gmail.com To: FW-1-MAILINGLIST FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM Sent: Fri, Oct 11, 2013 12:53 pm Subject: Re: [FW-1] 1] web traffic through IPSEC tunnel. Is ur encryption

Re: [FW-1] web traffic through IPSEC tunnel.

2013-10-11 Thread David DeSimone
tasneemjan tasneem...@aim.com wrote: I am using R77 and have a ip sec tunnel to a cloud service for anti-x filtering. Do you mean that you want all HTTP/HTTPS traffic originating from your network, no matter what destination IP it might have, to go through this IPSEC tunnel? I have rule at

Re: [FW-1] web traffic through IPSEC tunnel.

2013-10-11 Thread Sergio Alvarez
I agree with David here, the problem is with the definition of the vpn domain for the other peer, you just cannot know what the destination would be. Regards El viernes, 11 de octubre de 2013, David DeSimone escribió: tasneemjan tasneem...@aim.com javascript:; wrote: I am using R77 and

Re: [FW-1] web traffic through IPSEC tunnel.

2013-10-11 Thread Matthew M North
If I am understanding this right as well...I had to setup a few of these type of connections where only HTTP/HTTPS goes over a VPN tunnel for external internet URL Filtering service (cloud) rest of the services over Internal/Internet. In Traditional Mode VPN it works great/very easy to setup. In