It's managed by Sprint (not sure if that really matters) and my knowledge of PIX configuration is slim.
here is the vpn client config section
object-group network UserPool
network-object 10.90.7.0 255.255.255.192
network-object 10.90.7.64 255.255.255.192
network-object 10.90.7.128 255.255.255.192
network-object 10.90.7.192 255.255.255.224
network-object 10.95.5.0 255.255.255.128
object-group network AdminPool
network-object 10.95.5.224 255.255.255.240
object-group network ConsultantPool
network-object 10.95.5.240 255.255.255.240
object-group network ClientVPN-networks
network-object 10.95.5.0 255.255.255.0
then here is the routing (***.***.***.***x is our gw address masked for anonymity)
route outside 10.95.5.0 255.255.255.0 ***.***.***.*** 1
users can do most every task, but when they try to connect to an internal web server, the packets never make it to said web server.
I have 10.95.5.0/24 in my allowed networks for transparent proxy. web servers work if I put them in the skiplist.
any clue to why this isn't working?
any idea why my webservers are inaccessible? should i be adding entries for 10.90.7.x NAT hosts? Is there something else I should be adding to the astaro config?
any help is greatly appreciated.
This thread was automatically locked due to age.
