Thread: good method for authentication
View Single Post
  #2 (permalink)  
Old 2008-03-19
mcnallym mcnallym is offline
Senior Member
  
Join Date: 2007-06-04
Posts: 925
Rep Power: 2
mcnallym has an average reputation (10+)
Default Re: good method for authentication
Do the two sites have a VPN between the two. Also you said SecureClient so I presume you have the SecureClient License for this.

If they do then set the Remote Access Domain on the main office to include the encryption domain of the warehouse firewall.

Set the normal Encryption Domain of the main gateway to be the networks behind the gateway and the Office Mode range.

This way you can VPN to the main office gateway, authenticate once there, and then when you access the warehouse resources it routes across the site-to-site VPN to do this rather than building a seperate tunnel.

The downside is obviously more load in and out of the main office ISP link.
Reply With Quote