Hi,
I work on a new configuration with a NGX Firewall, a F5 Link Controler Load
Balancer and two external ISP. The NGX external interface have a private IP
that is natted on Internet by the Lik Controler. Through the NAT function of
the Link Controler the Firewall is available through two public external
address.
SecureClient ------- ISP1 (Public IP) ------- F5 Link Controler
---------(Private IP) ----------Firewall --------- Protected Server
My problem is when I use SecuRemote to mount a VPN to the NGX Firewall. When
I create the site, I found the real IP address of the Firewall in the
userc.C file.
Somebody know if a solution exist to solve this behavior so that when we
create the site we receive the public IP address.
Second question, if I have two ISP, in this case My Firewall are avalaible
through two external IP address. In the SecuRemote / SecureClient, can I
declare two connections points, if the first doesn't respond we connect to the
Firewall through the second ISP.
I have found a solution in changing the IP address directly in the userc.C
file, but in this case, we can't use the auto update function.
Thanks for your help
Hervé SCHLECHT
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
