• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 860
  • Last Modified:

WatchGuard BOVPN can ping but not able to access shared folders via windows explorer?

I have configured a BOVPN between a Firebox 10e-W and a Firebox x750e.  I can ping across to internal hosts/servers from both sides but I am unable to explore or map shared folders behind the x750e.  Any ideas what could be the problem?  
0
mansurw02
Asked:
mansurw02
  • 6
  • 3
  • 2
2 Solutions
 
the_b1ackfoxCIOCommented:
Depending on what version of windows n servers you have, you may need to open the following ports/traffic  :

137-139, 445
0
 
mansurw02Author Commented:
XP for clients and windows server 2003.  On the firewalls, VPN access opens all.
0
 
the_b1ackfoxCIOCommented:
Well lets break it down to basics then.  You say that you can ping across both networks.  This indicates that your tunnel is setup right, but can you verify any traffic going across the tunnel?  I would go to foundstone.com, and download the free port scanner  (superscan 3.0), yeah, 4.0 version is there, but the 3.0 works great and is less filling.  And are there any log file entries from either firewall?   I would try scanning across the tunnel and making sure I could get some response...
0
Increase Security & Decrease Risk with NSPM Tools

Analyst firm, Enterprise Management Associates (EMA) reveals significant benefits to enterprises when using Network Security Policy Management (NSPM) solutions, while organizations without, experienced issues including non standard security policies and failed cloud migrations

 
the_b1ackfoxCIOCommented:
I am participating in several questions and just realized something...  The watchguards sometimes have an intrusion detection feature that will shut down any non specifically defined traffic.  I was surpised at how well the feature worked.
0
 
mansurw02Author Commented:
Hmm, any other ideas?  I can also hit an internal site via fqdm not publically mapped, so that must mean it is able to hit the internal dns via the BOVPN.
0
 
mansurw02Author Commented:
Ignore my last comment.  That fqdm was publically registered.
0
 
dpk_walCommented:
Where is the DNS server located; do you replicate DNS at both ends of the firewall. If you have DNS server behind 750, on machine behind x10 give DNS server IP as behind 750 and this should get things going.

Thank you.
0
 
mansurw02Author Commented:
Our DNS is located behind the x750 along with our WINS.  I have configured the Trusted network DHCP on x10e to assign these to the clients.  I did an ipconfig /all on one of the workstations behind the x10e to confirm this and it did pick up our DNS and WINS.  This did not fix the problem.  
0
 
dpk_walCommented:
If you do nslookup machine-name-behind-x750 from any of the machine behind X10 please check if this resolves the name.
If no, then repeat same test from a machine behind x750 and update.

Do you get any deny entries on x750 when you run above command from a machine behind X10.

Finally when creating tunnel did you keep the default options on x750 and was the policy created by wizard or you manually created the policy.

Thank you.
0
 
mansurw02Author Commented:
I am not sure exactly what fixed it but I used suggestions from the both of you to get things working.  Thanks!
0
 
mansurw02Author Commented:
I am not sure exactly what fixed it but I used suggestions from the both of you to get things working.  Thanks!
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Improved Protection from Phishing Attacks

WatchGuard DNSWatch reduces malware infections by detecting and blocking malicious DNS requests, improving your ability to protect employees from phishing attacks. Learn more about our newest service included in Total Security Suite today!

  • 6
  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now