gb-users mailing list archive
<-- Chronological -->
Extended
<-- Thread -->

Re: VPN between GB firewalls

More messages from [ Paul Emerson]
To: Mohamed Jiwa <mohamedj_at_yahoo_dot_com>
Subject: Re: VPN between GB firewalls
From: Paul Emerson <paul_at_gta_dot_com>
Date: Sat, 18 Mar 2000 12:01:11 -0500
Cc: gb-users_at_gta_dot_com
In-reply-to: <>
References: <>
Sure, many of us who work at GTA have GNAT Box systems at home and have VPN connections to the office, (so we have many VPNs defined). Setting up more than one remote site is exactly the same as setting up one.

1. Define the Security Association (VPN)
2. Add a remote access filter to accept the ESP/AH remote connection. Or simply create 1 filter with an Address Object like "Remote VPN Sites". Then add the new remote site to the "Remote VPN Sites" object. This way simply adding/deleting IP addresses to the Object will handle the Remote Access issue.
3. Create both an inbound and outbound IP Pass Through filter for the VPN. Once again you can do this with an Object if the rules will be the same for all sites. Or you can be very specific and create many rules for inbound/outbound VPN access.

Perhaps there isn't so much written about this in the VPN section, because it follows most of the same concepts as the filters. I'm sure we will enhance and update the VPN section after we learn a bit more of how GNAT Box users approach the VPN.


Paul


Send postings to: gb-users_at_gta_dot_com
Access the list archives at:
http://www.gnatbox.com/gb-users/
----------------------------------
Has anyone tried to create a VPN between the GB
firewalls which consists of more than 2 sites. I would
like to create a VPN for connecting 5 sites.

There is very little info in the documentation. The
setup for VPN menu mentiones one remote gateway and
network.

Mohamed.

__________________________________________________
Do You Yahoo!?
Talk to your friends online with Yahoo! Messenger.
http://im.yahoo.com
----------------------------------------------
To Unsubscribe: send mail to majordomo_at_gta_dot_com
with "unsubscribe gb-users your_email_address
in the body of the message


--
-------------------------------------------------------------------------
Paul Emerson                               Tel: +1.407.380.0220 x106
Global Technology Associates, Inc.         Fax: +1.407.380.6080
3505 Lake Lynda Drive                   Mobile: +1.407.310.8564
Suite 109                                Pager: +1.888.440.8232
Orlando, Florida 32817                   Email: paul_at_gta_dot_com
USA                                        Web: http://www.gta.com
                      Mobile Email: 407.310.8563_at_messaging.sprintpcs_dot_com
-------------------------------------------------------------------------



[ Search for messages with a similar subject]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  VPN between GB firewalls, Mohamed Jiwa
Next by Date:  Reject if RDNS fails, Joe Biniskiewicz
Previous by Thread:  VPN between GB firewalls, Mohamed Jiwa
Next by Thread:  RE: VPN between GB firewalls, Jones, Van
Indexes:  [Date] [Thread] [All Lists] [Home]
Global Technology Associates, Inc