Within the Topology tab of the Firewall object set the VPN domain to be specific (or other - can't remember exact terminology off the top of my head), and include only the internal network object (or group that contains the networks you need access to).
Regards, Chris -----Original Message----- From: Mailing list for discussion of Firewall-1 [mailto:[EMAIL PROTECTED] On Behalf Of Jochen Vogel Sent: Wednesday, July 21, 2004 12:21 PM To: [EMAIL PROTECTED] Subject: [FW-1] Userc.c and allowed ranges Hi, If the local net is the same as in an DMZ SecureRemote doesnt work. If i delete the allowed range 192.168.1.0 in userc.c all is working. Is it possible to prevent the gateway from config the 192.168.1.0 as allowed net in userc.c SR--192.168.1.x---NAT---Internet----Checkpoint---10.0.49.x | 192.168.1.x Thx for help jo ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
