?
Solved

GB-250 VPN Box - Not able to ping to the External interface

Posted on 2008-10-11
4
Medium Priority
?
532 Views
Last Modified: 2013-11-29
I am using GB-250 VPN box.
I have configured the external inteface with valid IP connected to internet.
I was successfully able to access that box from internet using https access.
But i am not able to ping to that IP from Internet.
What configurations should i change so that i can ping that device from internet.
0
Comment
Question by:RajeevSrikant
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
4 Comments
 
LVL 77

Assisted Solution

by:Rob Williams
Rob Williams earned 1000 total points
ID: 22694056
Most routers have ICMP requests (replies to pings) disabled as a security feature. This helps to protect from Denial of Services Attacks, and often hides you from scanners. "Out of sight out of mind". Keeping that in mind there is usually an option under the firewall/security detection of the firewall configuration such as deny/allow WAN/ICMP/Ping requests.
0
 
LVL 77

Assisted Solution

by:Rob Williams
Rob Williams earned 1000 total points
ID: 22694176
Looking at the manual for that unit, pings are definitely denied and there are very detailed configurations just to manage logging and alarms for pings from the internet. You might be able to disable using Configuration > Security Policies > Preferences > Deny Invalid Packets > disable, but this is a security risk as mentioned earlier.
0
 

Author Comment

by:RajeevSrikant
ID: 22697303

 
I am using GB-250 for setting up the IPSec VPN tunnel to my remote office. My remote office use the Routefinder as VPN Box.
I have already confiugred the GB-250 for the IPSec tunnel by some how the IPsec tunnel is not getting established.
I want to troubleshoot and enable the tunnel.
Attached is the digarm representing the network. Also the IPSec VPN sec parameters which are configured at the remote office side. I want what configuration i should make on GD-250 to establish the tunnel
 
Let me know what are the other details required to address this problem.
 

 
Diagram.GIF
0
 
LVL 77

Accepted Solution

by:
Rob Williams earned 1000 total points
ID: 22697885
If you have HTTPS access there is little need to enable ICMP replies for testing.
As for the VPN, there are numerous options to configure and complex enough with two identical routers, but it can be more difficult with dis-similar units. I am afraid I am not familiar with either unit enough to assist with the VPN configuration. Perhaps others will be able to assist.
0

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

To setup a SonicWALL for policy based routing to be used with the Websense Content Gateway there are several steps that need to be completed. Below is a rough guide for accomplishing this. One thing of note is this guide is intended to assist in the…
Understanding FTPS File transfer is a common requirement in most Enterprises. While there are numerous ways to get a file from Point A to Point B over a network, perhaps the most common method still in use is FTP – File Transfer Protocol. FTP is …
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…
Suggested Courses
Course of the Month7 days, 21 hours left to enroll

765 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question