RE: Can I setup a VPN this way?

Fri, 16 Feb 2001 09:19:22 -0800 

Andrea,
We were talking about site to site(Lan to LAN) VPN. What you are referring
to is called access VPN when users(telecommuters, remote clients) try to
establish VPN connection to the office. The difference being that in first
there are two Lans connected with a tunnel while in second there is a host
machine (laptop)connected to a LAN.
You are right if you are using client software you need multiple hosts or
users to have it installed on the laptop but not for site to site. 
Regards,
Renuka 

-----Original Message-----
From: Andrea Lino (TEI) [mailto:[EMAIL PROTECTED]]
Sent: Friday, February 16, 2001 3:53 AM
To: 'Renuka Tankhiwale'; 'Ivan Fox'; Firewall-Wizards@Nfr. Net;
Firewalls@Lists. Gnac. Net; Firewall-1
Subject: R: Can I setup a VPN this way?


Are you sure that it is possible to make A talk both to B and C?
I was told that VPN-1 let the client look at only one Encryption Domain and
that would mean that if you want it to talk to 2 different peers it would
need 2 different VPN client.

Andrea Lino 
 
-----Messaggio originale-----
Da: Renuka Tankhiwale [mailto:[EMAIL PROTECTED]]
Inviato: mercoledì 14 febbraio 2001 2.00
A: 'Ivan Fox'; Firewall-Wizards@Nfr. Net; Firewalls@Lists. Gnac. Net;
Firewall-1
Oggetto: RE: Can I setup a VPN this way?


It is a bi-directional thing so there is nothing like a serial connection
from A to B to C. For A to talk to C it has to be there in the VPN policy. 

For A to talk to B you will have to set an IPSec peer IP of B.
For A to talk to C you will have to set an IPSec peer IP of C.
Then on B set A and C as IPSec peers and so on for all the three and
everybody can talk to everybody else.
Hope this helps. 


-----Original Message-----
From: Ivan Fox [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, February 13, 2001 3:28 PM
To: Firewall-Wizards@Nfr. Net; Firewalls@Lists. Gnac. Net; Firewall-1
Subject: Can I setup a VPN this way?


Let say three are 3 sites in serial, i.e., A --> B --> C.  Each site has its
own subnet and Check Point VPN-1.  Can I setup a continuous VPN using Check
Point VPN-1 starting from A and ending at C.

Any pointers are appreciated.

Ivan

-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]

Reply via email to