On Monday 28 February 2005 21:47, Jonathan Wright wrote: > I've not really done much with VPNs, at least not in the way you're > trying to configure it. I'm not sure how to have two 'catch-all' > gateways, 'cause the one for the VPN would override the original one for > the internet, and then the VPN would be trying to send though itself.
Ahh, that's why I purposely removed the default route, and added a host route to the datacentre firewall, before bringing the VPN up :) > Looking at it though, why don't you setup the PCs on the local network > to use a gateway on the Datacenter network (say 'firewall' on the > Datacenter bit). 'West' would then act as a router sending the data > though East, into the firewall and out? Now then, that's an idea! > OR, what about setting up a general firewall rule on West, so that any > connections which would go 'out' onto the internet be routed though the > VPN? In theory, I shouldn't need any firewall rules on west, at least no MASQ or SNAT rules. The PCs would be directly routable by both firewalls, due to the VPN. > I'm not even sure any of this is workable - just thought I'd throw out > some ideas? :) Ideas are always welcome, especially those which point me in a new direction! Thanks. -- Mike Williams
pgpqw8ZXH7nOH.pgp
Description: PGP signature
