Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 6 replies
  • Subscribers 26 subscribers
  • Views 1169 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Reaching other subnet from VPN over RED

helmut willems

hey ,

 

We have 2 sites who are connected over RED with the Main site.

 

When i connect from Home with SSL VPN to the main site , i can not reach the other sites

 

Main site is : 10.0.0.0

Other site : 10.10.0.0

 

Someone a clue for me ??

 

time to take a course of sophos :-) 



This thread was automatically locked due to age.
Parents
  • 0

    Hi Helmut,

    No problem. Define remote networks (REDs - they should be different) and add them to the sslVPN remote access definition as "Permitted network resources (IPv4)". Define the network firewall rule: source VPN any, destination LAN + RED1 + RED2 any any, match known users - you. It should work.

    Regards
    Jan

  • 0 in reply to JanSadlik

    Hi Jan ,

     

    So i have 2 Reds : Red1 and Red2

     

    i have placed them into the SSLvpn config on permited network resources

     

    On the firewall rule i've have ad  on Destination Zone : RED (dont find red1 and red2 )

     

    match known users is not cheked.

     

    But no Change :-(

     

    tnx

     

    Helmut

  • 0 in reply to helmut willems

    Ok, for RED operation mode = Standard / unified it should work.
    If you have RED operation mode = standard / split then select NAT & routing / Rewrite source address (masquerading) MASQ in the firewall rule. Maybe it will help. I have the first case and communication works.

    Regards
    Jan

  • 0 in reply to JanSadlik

    hmm

    Red mode is unified , so its the same

     

    but won't work

     

  • 0 in reply to helmut willems

    Does the sslVPN configuration file (xx.ovpn) on your computer contain:
    remote 10.0.0.1 8443
    remote 10.10.0.1 8443
    remote 10.20.0.1 8443    or something similar?
    After changing the sslVPN configuration on the firewall, you must download the configuration again and install it on your computer.
    I suggest enabling NAT & routing / Rewrite source address (masquerading) MASQ regardless of the RED mode.

    Regards
    Jan

Reply
  • 0 in reply to helmut willems

    Does the sslVPN configuration file (xx.ovpn) on your computer contain:
    remote 10.0.0.1 8443
    remote 10.10.0.1 8443
    remote 10.20.0.1 8443    or something similar?
    After changing the sslVPN configuration on the firewall, you must download the configuration again and install it on your computer.
    I suggest enabling NAT & routing / Rewrite source address (masquerading) MASQ regardless of the RED mode.

    Regards
    Jan

Children