This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSL Remote Clients through SSL site 2 site connection

Hey
i have a problem with my VPN infrastructure.
I have a main site where all remote clients connect via SSL VPN and a side office which also connects via SSL site 2 site.
All works great but... [:)]
my remote access clients cant ping/connect hosts at the side office. Local users at the main site can connect the side office and the other way around, that works.

I read some threads and i think i should change the site 2 site connection to IPsec, but i cant. Both side are behind NATed routers and ipsec does not work.

So how can i implement my SSL VPN? ssl clients should connect via ssl site 2 site tunnel...

regards

This thread was automatically locked due to age.

Parents

0 BAlfson over 9 years ago

It is possible to make IPsec work behind NATting routers, but it is tricky. In addition to apijnappel's prescriptions, you might want to look at the 'ICMP' tab of 'Firewall' as it's not clear from your description that anyone can ping anyone.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 BAlfson over 9 years ago

It is possible to make IPsec work behind NATting routers, but it is tricky. In addition to apijnappel's prescriptions, you might want to look at the 'ICMP' tab of 'Firewall' as it's not clear from your description that anyone can ping anyone.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data