How to connect 2 VPN-Client (safeNet) from same subnet, to Office..

Posted on 2006-04-23
Medium Priority
Last Modified: 2010-04-08
Hi there Gents...

Spend long time browsing through topics, but none of them seems to give any hints...

I have 1 Office with a Zywall 35. -  Support up to 35 simultaneous IPSec connections.
Connections from different single locations works just fine.

Now.. from another office... I want to have 2 clients from the same subnet, connected via Safenet VPN-clients to the Zywall at the same time.
The problem is that, one client connects and works fine,
but when the other client connects, the first gets disconnected.

I know something about not having the same ip-range or subnet.
But here´s the deal.
Client 1= /24
Client 2= /24
They share one DSL-modem with dynamic IP to internet.

At the Office - from internet to lan.
DSLmodem->CiscoRouter(WAN:static public IP.. InsideLAN: ->
Zywall(WAN: LanInside:>
Lan nodes : -

I know the best solution would be to install VPNbox ->VPNbox..
but that´s not an issue for the company.

Any help would be great.

Question by:HHLiisborg
  • 2
LVL 78

Accepted Solution

Rob Williams earned 1500 total points
ID: 16521160
No question the same subnets is usually an issue, however with Safenet clients, they are connected with a virtual adapter and it may work. Wondering if the problem might be the router at that site. Some routers will only support a single VPN client (pass-through tunnel), the second is either not allowed or dropped. Can you verify if that router does in fact support multiple tunnels? What router is installed at the satellite office?

Author Comment

ID: 16578647
Hi Robwill, sorry the delay..

It might have been the ISP-router ( Efficient Speedstreem). It´s gone by now.
It´s also a VPN-enabled device, but I couldn´t get access, cause of missing passwords ect.
So I installed a new vpn-router. Site-to-Site.

What I also noticed, was at the Main-office 1, they had another nat-router !! between internet an firewall.
So i had to change IP-(content) from Main-office public IP, to include the WAN-IP of the Zywall and nat-traversal on both routers.

> Internet - Nat-roter - Zywall - LAN

Satelite Office
> Internet - Zywall - LAN

So.. thanks for the clue, we r up an running.

PS.. If I want VPN-client access as well on the MainOffice Zywall, I just have to create
one more Gateway / Netpolicy right?
LVL 78

Expert Comment

by:Rob Williams
ID: 16581430
>>"PS.. If I want VPN-client access as well on the MainOffice Zywall, I just have to create
one more Gateway / Netpolicy right?"
I am not familiar with the Zywall units but that is the way it would normally be done. 1 policy for software clients and 1 for each site-to-site hardware tunnel.
Glad to hear you were able to resolve.

Featured Post

A Cyber Security RX to Protect Your Organization

Join us on December 13th for a webinar to learn how medical providers can defend against malware with a cyber security "Rx" that supports a healthy technology adoption plan for every healthcare organization.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you are like regular user of computer nowadays, a good bet that your home computer is on right now, all exposed to world of Internet to be exploited by somebody you do not know and you never will. Internet security issues has been getting worse d…
Do you have a windows based Checkpoint SmartCenter for centralized Checkpoint management?  Have you ever backed up the firewall policy residing on the SmartCenter?  If you have then you know the hassles of connecting to the server, doing an upgrade_…
Want to learn how to record your desktop screen without having to use an outside camera. Click on this video and learn how to use the cool google extension called "Screencastify"! Step 1: Open a new google tab Step 2: Go to the left hand upper corn…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
Suggested Courses

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question