Paul, you can either spend allot of money to implement a Checkpoint VPN solution which requires VPN modules on either network firewall. It would look like this:
192.168.x.x
|
|
|
205.x.x.x (hiding address) (Checkpoint with VPN Module)
| |<--------------------|
__| |_______ |
INTERNET -------- VPN
__|_|______ |
| | <------------------|
| |
204.x.x.x (hiding address) (Checkpoint with VPN Module)
|
|
|
172.16.x.x
Or you could do this with Microsoft VPN (PPTP):
192.168.x.x
|
|
|
205.x.x.x (hiding address) Checkpoint Server (DMZ with NT Server)
| |<--------------------|
__| |_______ |
INTERNET -------- VPN
__|_|______ |
| | <------------------|
| |
204.x.x.x (hiding address) Checkpoint Server (DMZ with NT Server)
|
|
|
172.16.x.x
Of course there are going to be allot of people on this list who are going to object to the use of NT as a VPN solution....
Ansar Mohammed
