Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 3 replies
  • Answers 1 answer
  • Subscribers 4 subscribers
  • Views 5231 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

L2TP over IPSec VPN user access to DMZ

Omar Zagnoli

I would like to know if anyone can help me.
I have created two users who must remotely access the internal network and the three DMZ networks (DMZ1, DMZ2, DMZ3) through the L2TP over IPSec protocol.
I have configured the L2TP over IPSec connection and the users are able to connect to the internal network .... but they can not connect to the three DMZ networks.
P.S - I have assigned a static IP for each user
Attached the screenshots of the configurations

.



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to BAlfson

    Hi Bob,

    Thanks for the reply...

    A user can connect remotely to my job via L2TP over IPSec VPN connection.

    He can connect any of the Internal network (LAN) computers and services...

    But...even if there is a firewall policy that enables this user to fully access (any service) the DMZ1, DMZ2 and DMZ3 networks, the user can even ping the servers ... so less connect via RDP. He can only ping the IP of the DMZ assigned UTM network ports.

    Of course I'm missing some network mapping or policy ... but I could not understand which one ...

    Can you help me?

    P.S -

    Internal network: 172.16.0.0/16

    DMZ1: 192.168.1.0/24

    DMZ2: 192.168.2.0/24

    DMZ3: 192.168.3.0/24

  • 0 in reply to Omar Zagnoli

    I still don't understand how the Remote Access user tests connectivity and what failure he sees.

    Cheers - Bob