Sure.
On the firewalls themselves the Office Mode Pool is routed
to the external interface of the firewall.
Yep, that's right. If a SecureClient Office Mode connection is using
192.168.200.10, for example, and you traceroute to it from the internal
network, it will end up on the SecureClient machine. If no SecureClient
connection is using that particular Office Mode IP address, the traceroute
will zip through the gateway and end up going to the Internet.
What happens when a
connection is attempted is essentially a Gateway Not Responding error
and nothing at all shows up in the Smartview Tracker.
No authentication, no IKE traffic, nothing? What are the exact messages
showing in the status window of SecureClient? What does ipconfig /all show
on the SecureClient machine while this is happening?
Or do you mean that the connection appears to be successful but no traffic
is routed from the SecureClient box to the gateway because of the same
subnet problem?
From a
SW Monitor it actually appears that my external address is trying to
talk to the internal address of the firewall when I have an address that
conflicts with the Encnet.
Can you give an example of this? I'm unclear by what you mean.
Ray
_________________________________________________________________
Don?t just search. Find. Check out the new MSN Search!
http://search.msn.click-url.com/go/onm00200636ave/direct/01/
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
| 