• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 535
  • Last Modified:

GB-250 VPN Box - Not able to ping to the External interface

I am using GB-250 VPN box.
I have configured the external inteface with valid IP connected to internet.
I was successfully able to access that box from internet using https access.
But i am not able to ping to that IP from Internet.
What configurations should i change so that i can ping that device from internet.
0
RajeevSrikant
Asked:
RajeevSrikant
  • 3
3 Solutions
 
Rob WilliamsCommented:
Most routers have ICMP requests (replies to pings) disabled as a security feature. This helps to protect from Denial of Services Attacks, and often hides you from scanners. "Out of sight out of mind". Keeping that in mind there is usually an option under the firewall/security detection of the firewall configuration such as deny/allow WAN/ICMP/Ping requests.
0
 
Rob WilliamsCommented:
Looking at the manual for that unit, pings are definitely denied and there are very detailed configurations just to manage logging and alarms for pings from the internet. You might be able to disable using Configuration > Security Policies > Preferences > Deny Invalid Packets > disable, but this is a security risk as mentioned earlier.
0
 
RajeevSrikantAuthor Commented:

 
I am using GB-250 for setting up the IPSec VPN tunnel to my remote office. My remote office use the Routefinder as VPN Box.
I have already confiugred the GB-250 for the IPSec tunnel by some how the IPsec tunnel is not getting established.
I want to troubleshoot and enable the tunnel.
Attached is the digarm representing the network. Also the IPSec VPN sec parameters which are configured at the remote office side. I want what configuration i should make on GD-250 to establish the tunnel
 
Let me know what are the other details required to address this problem.
 

 
Diagram.GIF
0
 
Rob WilliamsCommented:
If you have HTTPS access there is little need to enable ICMP replies for testing.
As for the VPN, there are numerous options to configure and complex enough with two identical routers, but it can be more difficult with dis-similar units. I am afraid I am not familiar with either unit enough to assist with the VPN configuration. Perhaps others will be able to assist.
0

Featured Post

What Security Threats Are We Predicting for 2018?

Cryptocurrency, IoT botnets, MFA, and more! Hackers are already planning their next big attacks for 2018. Learn what you might face, and how to defend against it with our 2018 security predictions.

  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now