This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

VPN-NAT

Hello,

I am testing ASL 2.0, I have setup a VPN and a FTP private server which is accessed through DNAT. VPN type is net --host

VPN connection works well, too FTP server, but I cant access FTP server from VPN host. Let me explain. Let say VPN connection is from host A to net B, when VPN status is enabled FTP access from host B doesnt work even if VPN tunnel is down, only when VPN status is disabled can FTP server be accessed from host B.
You can say "why do you want access FTP NAT access if you have a VPN tunnel", answer is because
this machine has a drdos and linux installed and it needs from dos session to do some transfer to the FTP server.

Is there any way to workaround this problem with ASL.

Regards

This thread was automatically locked due to age.

0 mande over 22 years ago

Hello mande,

But how can you ask such question ?, it is a profesional forum, it is not intendeed to answer silly question!!.

You cannot do that. When a connection is up, a route is established to client subnet through virtual interface but this route isnt stopped when connection is broken.Thus, all packets from internal subnet to external ip client will reach ipsec interface being dropped.

Perhaps you can use updown feature to delete route.

See you later at home
Cancel
Vote Up 0 Vote Down

Cancel