Link to home
Start Free TrialLog in
Avatar of scraby
scraby

asked on

dual wan with isa 204

here's my config
lan 192.168.0.1/24
isa dual nic with one nic on wan and one on lan (192.168.0.100)
i have added a second wan through a sonicwall tz200 connected to lan at 192.168.0.109
i have a site to site setup on the tz200 to a remote tz200 on 172.16.32.1
site to site is working fine but i can't get pc's on the remote subnet to connect to the isa because isa thinks these packets are spoofed
i added the remote network to the isa networks configuration and added rules to allow traffic but it still thinks they are spoofed and drops them

i'm not a network guy but know enough to be dangerous as they say

is there anyway to get isa to accept packets from this vpn?

thanks

shawn
ASKER CERTIFIED SOLUTION
Avatar of ArneLovius
ArneLovius
Flag of United Kingdom of Great Britain and Northern Ireland image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of scraby
scraby

ASKER

i added the route and still had issues.  i then added the remote subnet to the internal network address list and it started working

so now my isa internal network (under configuration) shows 192.168.0.1/24 and 172.16.32.1/24

do you know if this setup is ok to do?

thanks

shawn
I thought from your first post that you had already added the remote network to the ISA config.

Yes the setup sounds correct :-)
Avatar of scraby

ASKER

sorry, i had added it as a perimeter network and was not having any luck so i removed it.  i then added it to the internal network after adding the route and things are working now.
Avatar of scraby

ASKER

just a note for future readers that the remote network was added to the internal network in the isa configuration and the appropriate routes were added to the isa box and all was well after that.

thanks