This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Intranet web servers IPSEC and proxy

Hi

I'm using ipsec vpn on ASL 4.0,  I must use proxy forn Internet access, because ASL external interface is not part of the ipsec tunnell I can't access my internal web servers.
Everytime I ask for a web host my browser contact astaro that can't  connect to it because it use external ip address, if  I don't use proxy  everything  works  but I hav  to use it.
Is there a way to  solve this ?

Thank You

This thread was automatically locked due to age.

0 pablito over 22 years ago

I'm not certain what you are trying to do. Are you inside the LAN trying to see internal web servers? That would be a DNS issue and you need to resolve to the internal IP when inside and resolve to the external IP when outside to work properly.

If ASL needs to be part of a VPN what I do is to add an SNAT rule that states:
External_IP-->VPN_Net-->Internal_IP
This makes any traffice destined for the VPN from the external IP to source to the internal IP which is allowed on the VPN.
Cancel
Vote Up 0 Vote Down

Cancel