Well, if I understand this now, I must be doing something wrong. :-)
1. I connect to an R55 gateway in the US and get an Office Mode address.
2. Another R55 gateway in another country has a site-to-site VPN with us.
It's not managed by our SmartCenter.
3. I have full access to both my encryption domain and theirs using
SecureClient remotely.
The folks on the other side can connect to their gateway and fully access
our encryption domain as well. We do use hub mode and I use dynamic
interface resolving.
I can see their Office Mode addresses hitting our servers in the server
logs.
Is this the same situation as you're describing?
Ray
No we don't have a MEP configuration but yes site A and site B have a
site-to-site VPN.
> What do you mean by "client"? The computer connecting by remote access?
How
> is an ISP router supplying addresses to the remote access computer?
>
By the client, I meant the laptop connected via an ISP to the internet, and
getting an NATed
DHCP address from the ISP router.
It looks like the only way forward is to upgrade to NGX, and use per-site
office mode address assignment.
Thanks!
> Ray
>
> _________________________________________________________________
> The MSN Entertainment Guide to Golden Globes is here. Get all the
scoop.
> http://tv.msn.com/tv/globes2007/?icid=nctagline2
>
> =================================================
> To set vacation, Out-Of-Office, or away messages,
> send an email to LISTSERV AT amadeus.us.checkpoint DOT com
> in the BODY of the email add:
> set fw-1-mailinglist nomail
> =================================================
> To unsubscribe from this mailing list,
> please see the instructions at
> http://www.checkpoint.com/services/mailing.html
> =================================================
> If you have any questions on how to change your
> subscription options, email
> fw-1-owner AT ts.checkpoint DOT com
> =================================================
>
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
_________________________________________________________________
Get in the mood for Valentines? Day. View photos, recipes and more on your
Live.com page.
http://www.live.com/?addTemplate=ValentinesDay&ocid=T001MSN30A0701
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
