This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Host to Net--Is This Right ?

I have set up a host to net VPN between my ASL box and clients with dynamic IP's running Safenet. I want to allow the Safenet users access to a network (192.168.15.0) behind the ASL box. The only way that I can get this to work is to write a packet filter rule which allows any traffic from anywhere into this network. This has the effect of allowing any traffic from the Internet into my 192.168.15 network. Is this the only way to allow the Safenet clients access ? I realize that the 192.168.15 network is privately addressed and not routable via the Internet, but this still seems somewhat insecure. Am I going about this the right way ?

This thread was automatically locked due to age.

Parents

0 Gert Hansen over 23 years ago

Hi Chris,

yes this is the only way.
We know that this is not perfect and we are working on a solution that roadwarriors with dynamic ips get automatically added packetfilter rules with his actuall ip adress to gain secure access to the defined network, for that time period where the tunnel is up.

kind regards
gert

This
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 Gert Hansen over 23 years ago

Hi Chris,

yes this is the only way.
We know that this is not perfect and we are working on a solution that roadwarriors with dynamic ips get automatically added packetfilter rules with his actuall ip adress to gain secure access to the defined network, for that time period where the tunnel is up.

kind regards
gert

This
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data