Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 19 replies
  • Subscribers 1 subscriber
  • Views 9478 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

[7.490]IPSec VPN unable to browse the internet

wingman
Hi All

WIth firmware 7.490 iphone v3 can now connect via ipsec vpn to my astaro .I am able to browse the portal and webadmin but unable to browse the web. I have attached all relevant info.IPSec VPN pool is configures: HTTP Proxy(transparent mode),DNS,NTP,POP3 Proxy,Masquerading,FTP . Could you please help me on that as I have any defined on the networks on the ipsec vpn? Do i need to configure the proxy on my iphone?

Whenever I am trying to browse any webpage on my iphone, I immediately get the notification that iphone is not connected to the internet (pic also attached)

Thanks


This thread was automatically locked due to age.
Parents
  • 0
    Barry i can't even see the traffic in the logs. 

    To troubleshoot, I've removed the "Automatic packet filter rules" and I can see the block when trying to connect to webadmin and user portal 


    20:00:07	Default DROP	TCP	

    10.242.5.1	:	50500


    192.168.2.100	:	443

    [SYN]	len=64	ttl=64	tos=0x00	srcmac=00:00:00:00:00:00	dstmac=00:b0:c2:02:e3:c7

    20:00:08	Default DROP	TCP	

    10.242.5.1	:	50500


    192.168.2.100	:	443

    [SYN]	len=64	ttl=64	tos=0x00	srcmac=00:00:00:00:00:00	dstmac=00:b0:c2:02:e3:c7

    20:00:09	Default DROP	TCP	

    10.242.5.1	:	50500


    192.168.2.100	:	443

    [SYN]	len=64	ttl=64	tos=0x00	srcmac=00:00:00:00:00:00	dstmac=00:b0:c2:02:e3:c7

    20:00:10	Default DROP	TCP	

    10.242.5.1	:	50500


    192.168.2.100	:	443

    [SYN]	len=64	ttl=64	tos=0x00	srcmac=00:00:00:00:00:00	dstmac=00:b0:c2:02:e3:c7

    20:00:11	Default DROP	TCP	

    10.242.5.1	:	50500


    192.168.2.100	:	443

    [SYN]	len=64	ttl=64	tos=0x00	srcmac=00:00:00:00:00:00	dstmac=00:b0:c2:02:e3:c7


    I've re enabled the "Automatic packet filter rules" and when trying to connect to the net I see no blocks on the packet log
Reply
  • 0
    Barry i can't even see the traffic in the logs. 

    To troubleshoot, I've removed the "Automatic packet filter rules" and I can see the block when trying to connect to webadmin and user portal 


    20:00:07	Default DROP	TCP	

    10.242.5.1	:	50500


    192.168.2.100	:	443

    [SYN]	len=64	ttl=64	tos=0x00	srcmac=00:00:00:00:00:00	dstmac=00:b0:c2:02:e3:c7

    20:00:08	Default DROP	TCP	

    10.242.5.1	:	50500


    192.168.2.100	:	443

    [SYN]	len=64	ttl=64	tos=0x00	srcmac=00:00:00:00:00:00	dstmac=00:b0:c2:02:e3:c7

    20:00:09	Default DROP	TCP	

    10.242.5.1	:	50500


    192.168.2.100	:	443

    [SYN]	len=64	ttl=64	tos=0x00	srcmac=00:00:00:00:00:00	dstmac=00:b0:c2:02:e3:c7

    20:00:10	Default DROP	TCP	

    10.242.5.1	:	50500


    192.168.2.100	:	443

    [SYN]	len=64	ttl=64	tos=0x00	srcmac=00:00:00:00:00:00	dstmac=00:b0:c2:02:e3:c7

    20:00:11	Default DROP	TCP	

    10.242.5.1	:	50500


    192.168.2.100	:	443

    [SYN]	len=64	ttl=64	tos=0x00	srcmac=00:00:00:00:00:00	dstmac=00:b0:c2:02:e3:c7


    I've re enabled the "Automatic packet filter rules" and when trying to connect to the net I see no blocks on the packet log
Children
No Data