• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 380
  • Last Modified:

VPN Remote Access

A customer just purchase VPN licensed for their CP NG R55.  I have setup VPN Remote Access to allow SecurRemote clients access over the internet.  I am able to establish VPN connection with SecurRemote over internet, however I'm not able to ping any internal IP addresses once connected with SecurRemote.  The Smartview Tracker log shows logon and key install succesful.  Also, I have verify the rule for RemoteAccess has "any" for destination and services in Rule base.   ANy reason why I can't ping internal IP address?
0
hotrod_952
Asked:
hotrod_952
  • 2
  • 2
1 Solution
 
bignewfCommented:
Hello hotrod 952

your config would be helpful, but check your config for the following:

sysopt permit vpn (or ipsec, depending on IOS version)
check your NAT0 statements allowing the ip addresses or ip ranges from this remote site to your internal lan ip ranges
0
 
hotrod_952Author Commented:
This is for Remote Access for SecuRemote over the internet, not VPN tunneling.
0
 
bignewfCommented:
Do your internal routers have routes for your vpn clients to reach the internal lan, and do your vpn clients have routes to your internal networks?

have you run a "route print"  command at the command prompt?
0
 
hotrod_952Author Commented:
I figure out the issue.  This particular customer's internal network ip address 192.168.*.* is the same as my home network.  Because SecureRemote doesn't allow you to setup Office Mode on the FW Gateway you must make sure that the home network isn't the same as the customer's internal network.  If so, then the packet doesn't know how to route out to the external gateway.  
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Worried about phishing attacks?

90% of attacks start with a phish. It’s critical that IT admins and MSSPs have the right security in place to protect their end users from these phishing attacks. Check out our latest feature brief for tips and tricks to keep your employees off a hackers line!

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now