Solved

Cyberoam SSL VPN

Posted on 2014-12-26
1
424 Views
Last Modified: 2014-12-29
I have been instructed to throw out old firewall set up by external company and install a Cyberoam unit. I have deployed the solution in gateway mode. Current firewall is not managed by myself and the company managing it is not very forthcoming with the info. I inhereited the site and need to secure it asap. I am by no means a network specialist but I am also not a complete idiot. I would appreciate any help in setting up the following scenario.

Users must VPN in with the client provided by Cyberoam appliance using either a preshared key or a certificate. I can manage to set up the connection just fine, but I have to specify a different ip range to be distributed to people connecting via SSL VPN. I need to have the people logging in to have a IP assigned by either my DHCP server or a range within my internal range so they can access all internal servers and shared drives.

Internal range is 172.22.109.xxx but when I try to add the address range I get an error saying the internal range is already in use and I need to specify a differnet range. When I use 192.168.1.xxx I can connect successfully, but cannot access any internal resources because I am on a different ip range.  Please point me in any direction as to what needs to be done to get this working.

The current VPN connection works with openvpn and the people connecting has access to internal network through ip's assigned to internal range. I have no idea how they set it up.
0
Comment
Question by:The-It-Pro
1 Comment
 
LVL 11

Accepted Solution

by:
rharland2009 earned 500 total points
ID: 40521843
I believe you need to define the local resources (the servers/etc. that you want your VPN users to access) in the Cyberoam box. Here's a dated but I believe still accurate layout for that scenario. The 'Hosts/Networks' piece will be of interest to you, I think.

http://kb.cyberoam.com/default.asp?id=1303
0

Featured Post

IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

BIND is the most widely used Name Server. A Name Server is the one that translates a site name to it's IP address. There is a new bug in BIND (https://kb.isc.org/article/AA-01272), affecting all versions of BIND 9 from BIND 9.1.0 (inclusive) thro…
Envision that you are chipping away at another e-business site with a team of pundit developers and designers. Everything seems, by all accounts, to be going easily.
Viewers will learn how to properly install and use Secure Shell (SSH) to work on projects or homework remotely. Download Secure Shell: Follow basic installation instructions: Open Secure Shell and use "Quick Connect" to enter credentials includi…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now