Checkpoint secremote Cable/xDSL Routers

[mokey]

Would like to share 1 cable/xdsl connection with 4 to 5 computers to access internet and also allow FW-1 Vpn.
VPN works fine through cable modem. Try to go through cable/xdsl routers w/static addresses behind Lynksys, Asante Ugate... Key exchange and Authentication takes place but no access to Firewall for applications etc. Have tried unencapsulated FWZ,as I understand ports 256 and 259 should be mapped to client. ISAKMP also tried with udp ports 500. Also tried routers "DMZ".
Has anybody gotten this to fly or have any suggestions?
Phoneboy was of assistance OEMs not much help at all.

 

[Surf]

Mokey,

I have been going through the same headache. I recently have been using Nexland's ISB2LAN-H4 to allow all IPSEC traffic to pass through the Nat'd device. The device supports IPSEC pass thru and is supported with Check Point. My problem sits on the Checkpoint end, I was told I have to enable a NAT pool in order for it to work. I am also unsure what type of NAT rules I should create. If you would like to compare notes, let me know.