This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

User VPN remote to specific IP Address

hi ,

Trying to setup user to remote VPN via SSL connection to one specific IP host address..

from the packet filter i direct csfong(user network) --> http --> caweb (ip host) , putting thisinto the top

another filter csfong(user network) --> any -->when I connected , it allow me to goes any where. i must have done something less, please advice. Thanks
network.jpg

Packet.jpg

csfongnetwork.jpg

regards.csfong

This thread was automatically locked due to age.

0 Hallowach2 over 13 years ago

Ok - that looks correct.

One possible problem could be that the IP adress of the logged in user csfong is not propagated to user(network) object so that rule 1 & 2 don't match and the last rule matches. You can verify if that is the problem if you vpn in with the user csfong and then check in the network definitions if the object csfong (user network) is resolved to an adress.

Regards
Manfred
Cancel
Vote Up 0 Vote Down

Cancel
0 csfong over 13 years ago

this is what i see at the definition. CSFONG_NETWORK.jpg
do i need to do some specific IP assign to csfong network.
Cancel
Vote Up 0 Vote Down

Cancel
0 BAlfson over 13 years ago

If csfong is logged in via VPN, the object should have an IP.

I notice that you have a definition bound to an interface. That can cause routing problems. You should go through all of your definitions and set each one to 'Interface: >'.

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel