Checkpoint 4.1 SP5 Nokia RL 50's

[JacKFlacK]

We have a fairly large WAN and after we made some changes recently to our DMZ some odd problems have happened.

We changed our DMZ from a valid external IP sec to a Private IP sec of 192.168.1.X This didn't work at first, so we brought the servers in directly behind the firewall and noticed we had this problem. Any item like WEB or FTP servers cannot be NAT behind a firewall and have the direct URL work internally. Example w*w.yourname.com could not be accessed by users behind the firewall you had to use the internal address of 192.168.1.X. We fixed the DMZ and moved the WEB and FTP servers back. Now all users in our Main office can now use the URL. However our remote offices cannot use the URL and they must use the new DMZ address to access our URL. We have updated all rules to the remote sites, but as of today no remote offices, only the main office can use the URL. All of our remote offices use Nokia RL 50's or 250's and at one time the DMZ worked correctly for all offices. The fact that it works correctly at our main office but not our remote offices is baffleing.

Any ideas?

I will check day to day for responses and will answer any follow up questions as promptly as I can.

Thank You

-Jack