We help IT Professionals succeed at work.
Get Started

Cannot ping VPN Network behind perimeter interface from inside Forefront TMG

xiss
xiss asked
on
991 Views
Last Modified: 2012-05-12
Goodday!

On the road off creating a 3-leg perimeter with one of our customers with Forefront TMG and a Juniper SRX100 on both ends I got some bumps that are almost solved ...but one.

I have created the following situation;

Network Situation
Now I have the following problem;

I can ping from my hosts on the datacenter side (1) to the internal interface of the Juniper (3) but I cannot ping the hosts on the other side of the Site-to-Site VPN. The VPN is up because when I connect my laptop to the Juniper and add the rule "route add 172.16.10.0 MASK 255.255.255.0 172.30.15.1" I can access the hosts on the other side. The message on my side is "Reply from 172.30.15.253: Destination host unreachable." Did I do something wrong with the routing or is it a Juniper problem?

Regards,

Kasper
Comment
Watch Question
CERTIFIED EXPERT
Top Expert 2007
Commented:
This problem has been solved!
Unlock 2 Answers and 3 Comments.
See Answers
Why Experts Exchange?

Experts Exchange always has the answer, or at the least points me in the correct direction! It is like having another employee that is extremely experienced.

Jim Murphy
Programmer at Smart IT Solutions

When asked, what has been your best career decision?

Deciding to stick with EE.

Mohamed Asif
Technical Department Head

Being involved with EE helped me to grow personally and professionally.

Carl Webster
CTP, Sr Infrastructure Consultant
Ask ANY Question

Connect with Certified Experts to gain insight and support on specific technology challenges including:

  • Troubleshooting
  • Research
  • Professional Opinions
Did You Know?

We've partnered with two important charities to provide clean water and computer science education to those who need it most. READ MORE