Cyberoam SSL VPN

Posted on 2014-12-26
Medium Priority
Last Modified: 2014-12-29
I have been instructed to throw out old firewall set up by external company and install a Cyberoam unit. I have deployed the solution in gateway mode. Current firewall is not managed by myself and the company managing it is not very forthcoming with the info. I inhereited the site and need to secure it asap. I am by no means a network specialist but I am also not a complete idiot. I would appreciate any help in setting up the following scenario.

Users must VPN in with the client provided by Cyberoam appliance using either a preshared key or a certificate. I can manage to set up the connection just fine, but I have to specify a different ip range to be distributed to people connecting via SSL VPN. I need to have the people logging in to have a IP assigned by either my DHCP server or a range within my internal range so they can access all internal servers and shared drives.

Internal range is 172.22.109.xxx but when I try to add the address range I get an error saying the internal range is already in use and I need to specify a differnet range. When I use 192.168.1.xxx I can connect successfully, but cannot access any internal resources because I am on a different ip range.  Please point me in any direction as to what needs to be done to get this working.

The current VPN connection works with openvpn and the people connecting has access to internal network through ip's assigned to internal range. I have no idea how they set it up.
Question by:The-It-Pro
1 Comment
LVL 11

Accepted Solution

rharland2009 earned 1500 total points
ID: 40521843
I believe you need to define the local resources (the servers/etc. that you want your VPN users to access) in the Cyberoam box. Here's a dated but I believe still accurate layout for that scenario. The 'Hosts/Networks' piece will be of interest to you, I think.


Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Most of the applications these days are on Cloud. Cloud is ubiquitous with many service providers in the market. Since it has many benefits such as cost reduction, software updates, remote access, disaster recovery and much more.
In this article, we’ll look at how to deploy ProxySQL.
Viewers will learn how to properly install and use Secure Shell (SSH) to work on projects or homework remotely. Download Secure Shell: Follow basic installation instructions: Open Secure Shell and use "Quick Connect" to enter credentials includi…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

619 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question