>
> Hi Steve,
>
> I have a couple of DMZs that users have to access from
> other sites across the VPN. What I normally do is:
>
> 1. Make sure the DMZ is in the encryption zone
> 2. Set up encryption between sites, with no
> restrictions.
Done that.
> 3. Place a rule above the encrypt rules, that blocks
> all packets to all of my encryption zones. This rule
> is placed on the fw where the DMZ is.
Doing this the rulebase won't compile because this rule blocks the
encryption rules.
Unless I'm missing soemthing fundamental here.
-Steve
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
