Hi there,
i am using Windows 2000/ XP clients to connect via ssh sentinel to my asl. no problems so far, the client authentificates and sucessfully enables the tunnel.
the client has a dynamically asigned ip-address. the asl uses a public ip-address on the external interface and a private ip on the internal interface
from the client pc i am able to reach the internal interface of my asl (eth0 192.168.0.xxx)
but none of the other hosts on my private network.
i actually made this work by adding a DNAT/SNAT rule
no-match -> eth0_Network__ / Any MASQ__eth0 no-match
but my question is am I punching security holes in my asl/network? is there another way to configure this?
sorry for my english and thanks in advance
bernd [:S]
This thread was automatically locked due to age.