Juniper VPN One Way Traffic

Hi,

I have just installed a Juniper SRX100 Router and setup a site-to-site policy based VPN.  The tunnel is up but traffic is only going in 1 direction

From head office(Juniper location)  I can ping all devices at the remote site.  However from the remote site I cannot access anything at head office.

What am I missing?
LVL 1
BellscapeAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

StolsieCommented:
Hi
a few thing to look at.
default gateway?
DHCP config?
split tunnel config
BellscapeAuthor Commented:
Setup looks like this

192.168.1.0 subnet -> SRX100 -> VPN Tunnel -> Netgear Router -> 192.168.3.0 subnet

I can ping from anything on 192.168.1.0 subnet to anything on the 192.168.3.0 subnet.  But the 192.168.3.0 subnet cannot access anything on the 192.168.1.0 subnet
StolsieCommented:
what does the config look like at the remote side192.168.3.x?
have you got 192.168.1.x set up as a vpn network or route?
The IT Degree for Career Advancement

Earn your B.S. in Network Operations and Security and become a network and IT security expert. This WGU degree program curriculum was designed with tech-savvy, self-motivated students in mind – allowing you to use your technical expertise, to address real-world business problems.

BellscapeAuthor Commented:
We are just using a Netgear DG834 at the remote site with a VPN policy to connect to the head office SRX100.  Config attached
REMOTE.jpg
StolsieCommented:
what you got in static routes?
BellscapeAuthor Commented:
nothing in static routes
BellscapeAuthor Commented:
I think it might be a policy issue from the VPN(Internet Zone) to the local(Internal Zone) but for the life of me cant figure out how to configure it in JunOS
StolsieCommented:
i would like to go through the config step by step with you to solve it without the manual but it might be best to read the manual if you can't figure it out.
VPN config
BellscapeAuthor Commented:
I feel like an idiot but the issue was just the Windows firewall blocking traffic form a different IP Range

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
BellscapeAuthor Commented:
This was the solution
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
VPN

From novice to tech pro — start learning today.