Here's our setup. We have 5 offices around the US. Our topology is the spoke setup, with the location I'm at (HQ) being the "hub". Each office has its own file server which those users are mapped to and store all their files. Our offices are all connected via VPN tunnels (branch office VPN) from Firebox to Firebox.
Users residing at the other 4 offices (like mobile users here) all use MUVPN v10 in order to use Outlook and (supposedly) access network shares. They ALL authenticate through the Watchguard here (they don't authenticate to their local Firebox).
The problem is, once authenticated through the VPN, you cannot access any other site. For example, our site is 172.16.x.x. The remaining are 172.17.x.x, 172.18.x.x, etc. If a user in our southern office tries to connect to their shares, you get a connection error. You can't even ping any of the remote locations.
We've opened up all NetBIOS and TCP/UDP ports, added WINS and DNS entries on both the Fireboxes and VPN clients. Nothing works. (And, frankly, Watchguard's support is useless) Our consultant who set this all up isn't sure what's causing it, but suspects there's an issue arising from users connecting through one tunnel (MUVPN) and trying to access data over a second tunnel (BOVPN).
Regardless, we have no idea what the problem is. We could really use some ideas or a tried and true solution.
The one possibility I suggested is that we turn on Exchange access over RPC, which takes the VPN out of the equation for users to use Outlook. Then, we reconfigure the MUVPN clients to connect to their home location instead. However, I don't know fi there are any drawbacks to this.
HELP!!
Start Free Trial
