I'm a little confused about VPN and firewalls. My network has a firewall/VPN branching off to a DMZ, then another firewall in front of my private network. I assume the VPN terminates at the output of the firewall. How then do I configure my second firewall? Do I assume that the output of the VPN are my local, non-routable private network addresses? Does that mean I assume that these same addresses could never have originated from the public network? Thanks for any advice/pointers.
Steve