We just received our astaro box, a 220. The vendor did much of the configuration and we are having some teething problems.
The topology is that we have a perimeter firewall, with the Astaro set up behind it in bridged mode, with all clients/servers set up behind that with those machines set to use the 220 as their gateway. Currently, intrusion prevention is off and the packet filter is set to allow all traffic.
We are using the http proxy and the dns proxy is set to forward to our internal DNS servers (windows 2003 servers). For those on internal machines, resolution works great. For remote employees it is not working. Remote workers VPN into the perimeter firewall at which point they are given an internal ip address. That is physically, they are connecting through the eth1 interface of the astaro. When they try to access internal resources by name, they get an error page generated by squid saying that the requested url could not be retrieved by the cache.
Any thought, ideas, or fully formed solutions would be appreciated.
Scott Klassen
This thread was automatically locked due to age.
