This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

VPN tunnel ok, but no network traffic

Hi,

I have a problem with a VPN connection. The tunnel is up and fine, but I get no traffic through it. Here our netwok, maybe somebody of you can help:

Local Network (it's an additional Network on eth4):
ABC.ABC.ABC.0

ASG:
DEF.DEF.DEF.DEF

Remote Network/Host:
GHI.GHI.GHI.GHI

Remote Gateway:
JKL.JKL.JKL.JKL

Auto packet filter and Strict routing are activated.

What I have done:
Traceroute/ping to GHI.GHI.GHI.GHI, but I get no answer. Wanted to set masquerading, but I can't set here the the additional interface for the remote network.

What is wrong? Thanks in advance!

Greetings
kerdos

This thread was automatically locked due to age.

Parents

0 BAlfson over 16 years ago
I'm a little confused. Please tell me what I'm missing.
[LIST=1]
You have a group of traders in an internal network, 'TRADERS IF [VPN] (Network)' which is connected to your Astaro and has it's own range of PRIVATE IPs.
At another site, you have a Server to which you want to allow access by the traders.
The traders access this Server via a VPN, and is the only thing they should be allowed to access via the VPN.
The Server has a public IP, but cannot be reached on the public internet.
[/LIST]
If all that is true, then your configuration of the Astaro appears to me to be correct.

Do you need to set a route in the Server to have it send the response to VPN traffic to a different gateway than its default?

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel
0 kerdos over 16 years ago in reply to BAlfson
I'm a little confused. Please tell me what I'm missing.
[LIST=1]
You have a group of traders in an internal network, 'TRADERS IF [VPN] (Network)' which is connected to your Astaro and has it's own range of PRIVATE IPs.
At another site, you have a Server to which you want to allow access by the traders.
The traders access this Server via a VPN, and is the only thing they should be allowed to access via the VPN.
The Server has a public IP, but cannot be reached on the public internet.
[/LIST]
If all that is true, then your configuration of the Astaro appears to me to be correct.

Do you need to set a route in the Server to have it send the response to VPN traffic to a different gateway than its default?

Cheers - Bob

[LIST=1]
'TRADERS IF [VPN] (network)' is an additional astaro network interface. the network is called VPN.
right, but they where not traders, but support.
the supporter access this server via a VPN, and is the only thing they should be allowed to access via the VPN.
correct.
[/LIST]

please, ask me whenever you need additional information.
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 kerdos over 16 years ago in reply to BAlfson
I'm a little confused. Please tell me what I'm missing.
[LIST=1]
You have a group of traders in an internal network, 'TRADERS IF [VPN] (Network)' which is connected to your Astaro and has it's own range of PRIVATE IPs.
At another site, you have a Server to which you want to allow access by the traders.
The traders access this Server via a VPN, and is the only thing they should be allowed to access via the VPN.
The Server has a public IP, but cannot be reached on the public internet.
[/LIST]
If all that is true, then your configuration of the Astaro appears to me to be correct.

Do you need to set a route in the Server to have it send the response to VPN traffic to a different gateway than its default?

Cheers - Bob

[LIST=1]
'TRADERS IF [VPN] (network)' is an additional astaro network interface. the network is called VPN.
right, but they where not traders, but support.
the supporter access this server via a VPN, and is the only thing they should be allowed to access via the VPN.
correct.
[/LIST]

please, ask me whenever you need additional information.
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data