Sascha, Create a NAT rule to send packets destined to the smartcenter through the static IP nat'd to the private IP.
Matt -----Original Message----- From: Mailing list for discussion of Firewall-1 [mailto:[EMAIL PROTECTED] On Behalf Of Sascha Picchiantano Sent: Thursday, May 06, 2004 5:56 AM To: [EMAIL PROTECTED] Subject: [FW-1] vpn-1 edge to management server behind firewall (private IP) Hello, does it matter for a VPN-1 Edge managed through SmartCenter where the SmartCenter Server is located? The scenario here is that the SmartCenter server is behind the enforcement module on a private IP, thus not reachable from the internet. And right there, on the internet, is the VPN-1 Edge device. Usually the SmartCenter server pushes the policy to the enforcement modules, but do they need to have back connections for things like logging? Would that be working through a VPN initiated from the same box? Thanks, Sascha ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
