Here is my setup.
I have 3 interfaces.
Wan
Internal (internal lan) 172 range
Wireless (wireless access points plugged into this one) 192 range
I have l2tp vpn setup to the wan inteface so remote workers can login. This works great.
I have rules setup so the wireless interface only has web acces to the outside and that is it. From this network I want them to be able to connect to the vpn and then have the same access to system as they would remotely.
My problem is the l2tp does not work from the wireless interface. In the packet filter is see that is tcp 500 is being blocked. When i put in a packet filter rule to allow that, it goes away but will still not connect. I have turned on the pptp vpn and it works just as I would like, but that is accessable from the outside which I cannot have due to company policy.
So i either need to be able to tell the pptp to only work over a certain network, or get l2tp to work over multiple networks, or come up with a different strategy.
What ever I come up with also needs to work for both Windows and Mac computers.
Thanks for your help.
This thread was automatically locked due to age.
