 | ||
 VPN Topology Design Query. | ||
| CPUG | |
| The Check Point User Group | |
| A Resource For The Check Point Community. Fast. Useful. Independent. | |
|
| |||||||
 |
| | LinkBack | Thread Tools | Display Modes |
 2008-06-17 | |||
| |||
 VPN Topology Design Query. Hi, Running NG AI (R55) on SPLAT devices with no VPN currently set up, and have a basic query with regard topoolgy design and am wondering if the following is possible and how I can achieve it. Site 1 Interfaces 1 - LAN (Internal) 2 - Direct connection to 3rd Party (External) 3 - Connection to internet (External) Site 2 Interfaces 1 - LAN (Internal) 2 - Connection to internet (External) The objective is to allow traffic from third party connection from site 1 to site 2's LAN via a VPN for business continuity purposes. Leaving routing aside (failover will be application based), if I use the topology above, I dont see it working because I believe traffic is not allowed between two external interfaces. Can this be done? If so, how? When the VPN is created between two external interfaces, is it considered an internal interface??? What about changing one of the interfaces from external to internal - surely a risk as I'd have to switch off anti spoofing??? Any help appreciated. Cheers, MG  |
|
| Tags |
| external, interfaces, internal, topology, vpn |
| Thread Tools | |
| Display Modes | |
| |
Linear Mode
