We ran VPN
w/ Stonebeat HA (not fullcluster) and it worked just fine as long as we had
state-sync going between the firewalls.
If you’re talking about Secureclient vpn then the policy server must be
a separate box from the firewalls and the management station shouldn’t be part
of the firewall pair either (not necessary but good practice all the same); if
it’s gateway-gateway vpn then it’s especially important to have the management station
separate from the firewalls. Also,
I created a cluster of the firewalls in the firewall s’ware and ran the CA on
the management station.
Good luck.
Kevin
Martin
[email protected]
Stafford Trading Inc.
Chief Security Officer
Chicago, IL 60604 TEL
230 S. LaSalle, Ste. 688
-----Original
Message-----
From: [email protected]
[mailto:[email protected]]
Sent: Tuesday, January 15, 2002
8:57 AM
To:
[email protected]
Subject: [FW-1] vpn with stonebeat
I've FW-1 4.1
SP4 on solaris 2.6 with stone beat.
I want to
install VPN on this firewall.
How can I
setup that?
Re
___________________________________________________________________