We have the following setup.
- ASL protecting main subnet 192.168.23.X
- several subnets (192.168.25.X, 192.168.26.X) connected to ASL via VPN (linksys router) with remote subnet set to 192.168.0.0/255.255.0.0
The VPN subnets were defined under network definitions and then collected in a group (VPN_Group), which was then added to a larger group (Main_Group). In ASL I allowed Main_Group-Main_Group-Any-Allow. This worked fine under ASL 4, every client in all the subnets could connect to all the others.
Bug 1:
After Setup of ASL 5 (5.011 iso+Up2date) and importing of ASL4-Backup, the VPN-Vlients couldn't connect to the main subnet anymore. This was solved by adding all the members of the VPN-group seperately to the main_group.
Bug2:
I cannot connect from one Linksys-Subnet to another via ASL (that worked before!), i.e. 192.168.25.X to 192.168.26.X. Surprisingly enough, PING works, but connections are NOT possible, only to the gateway itself.
I'd really like to be able to comminicate between all the subnets, but I'd rather not set up a seperate tunnel for all the possible combinations...
Oliver
This thread was automatically locked due to age.
