VPN

24K

Solutions

23K

Contributors

A virtual private network (VPN) is a network that uses a public telecommunication infrastructure, such as the Internet, to provide remote offices or travelling users access to a central organizational network securely. VPNs encapsulate data transfers using secure cryptographic methods and other security mechanisms to ensure that only authorized users can access the network and that the data cannot be intercepted.

Share tech news, updates, or what's on your mind.

Sign up to Post

is there a proper way to establish connectivity between remote offices that are connected by VPN (SW SOHO) to the main branch that is using Sonicwalll NSA 2400. Each remote office has connectivity to the main branch, but need each remote office connectivity with each remote office via VPN.
0
I am installing a new Meraki firewall in our organization.  I would like to be able to keep the ability to have SSL VPN that we currently have on our Cisco ASA firewall.  Would anyone have any knowledge of what I would need to do in order to put the Cisco ASA behind the Meraki, open ports on the meraki to point to the ASA so I can still use it for client VPN access only.  Meraki would handle everything but the VPN.
0
I need to be able to share a printer when a computer is connected to the VPN.
My theory is that  the printer will need to be shared, before it can be printed to, when a VPN connection is established.
The OS is Windows 10
My other ideas is to uninstall the printer and install it when I am connected to the VPN.
I imagine there is a solution to this challenge.
I do not recall the other steps I tried, but I believe the one solution to the problem is to configure a Cisco ASA.
I was also thinking that I will have to enable the wireless printer's IP as an exception on the firewall.

Maybe I need to create a script with Powershell, to first configure the printer to print to a file then send it directly to the print queue.
0
Slow Performance while VPN to the network.

Does anyone know why VPN performance is so slow when running speedtest (80MB directly to the internet and only 10MB while through VPN).  There is no split tunneling enabled so all internet traffic goes through the VPN tunnel.

Thank you in advance,
0
Hi All,


I am having an issue with my Azure subnets (10.210.0.0/16, 10.211.0.0/16) being able to access my prem subnets over a S2S VPN tunnel.  So currently everything is work fine from my inside internal range (10.1.1.0/24).  As an example when I try to access say ports 88,53,389 etc from the Azure controllers (10.211.20.10, 10.211.20.11) to the Prem Controller (10.1.1.159) it is fine, but when I try to access them from the same Azure controllers to say another local controller 10.1.90.14 I get the following error in the log:


FILTER:srcIP=10.211.20.10;dstIP=10.1.90.14;

%ASA-5-305013: Asymmetric NAT rules matched for forward and reverse
flows; Connection protocol src interface_name:source_address/source_port [(idfw_user)] dst interface_name:dst_address/dst_port [(idfw_user)] denied due to
NAT reverse path failure.


When not on the same interface as the host using NAT, use the mapped address instead of the actual address to connect to the host. In addition, enable the inspect command if the application embeds the IP address.


Asymmetric NAT rules matched for forward and reverse flows; Connection for udp src outside:10.211.20.10/57160 dst ED:10.1.90.14/53 denied due to NAT reverse path failure


Now this is the current NAT:


nat (inside,outside) source static OnPremisesNetworks OnPremisesNetworks destination static Azure-Networks Azure-Networks no-proxy-arp route-lookup


The OnPremisesNetworks group object has the inside networks …
0
We are currently using a Meraki MX84 for VPN.  It connects to our Active Directory to authenticate users.
I am setting up a Duo Authentication Proxy to tie into my Meraki MX84 so I can have Multi-Factor Authentication on my VPN.  The Duo Auth Proxy is asking for a Radius Secret from the Meraki.  I am not sure where to setup the connection on the Meraki side.  Am I setting up sign in with my Radius Server under Access control?
0
Using Windows 7 I utilised a number VPN connections.

Following successful connection the connection properties were viewable and showed the IP address of the server and a secondary IP address I then used to connect VIA RDC.

Having now replaced my system with a Windows 10 PC whilst I am able to create a VPN connection and successfully connect the connection properties are not visible.

Where  can I find them.
0
I have a new Cisco ASA 5506x and am having difficulty setting up remote management.

SSH on the outside address will work, and is set to accept connection from only specific IPs.  However, I would like to be able to use ASDM from outside as well. (My IOS skills suck.) Using the same IPs as the ssh command does not work, and the client gets a "unable to launch device manager from ..."  

I have Anyconnect VPN working as well, and when connected, I can ping all addresses on the inside network, including the management IP. (same as gateway address) Device is configured to use inside address 10.0.12.0/24, and VPN pool is 10.0.13.0/24.  

I have ' management-access inside'  entered in the configuration, and yes when a PC is connected to the inside ports, the ASDM will come up and run as expected.

I think what is killing this is the default configuration now comes with all the ports on the device (less 'outside') are joined to a bridged network that is by default BVI1. All remaining interfaces are given the nameif of 'inside-1' thru 'inside-7'. To make http work on the inside ports requires adding lines 'http 10.0.12.0 255.255.255.0 inside-1' thru ...inside-7.  If I add 'http 10.0.12.0 255.255.255.0 inside' or http 10.0.13.0 255.255.255.0 inside' it barks at me that this is an 'ambiguous command'.  (same thing if trying to add BVI1) So clearly it wants to reference something that is a physical connection instead of a virtual object.  Problem is that the only other options …
0
Are there instructions somewhere for setting up VPN on Ubuntu via command line?

Anyone can provide any reference please?  Thank you!!
0
We have a site to site VPN setup between Site A and B using Sonicwall's.  Site A is the main site which also is setup with an SSLVPN.  The users need to access the SSLVPN from within the LAN as well because we have a bunch of RDP and VNC bookmark's that they use.  We have remote.domain.com:4433 setup for this SSLVPN access.  This works fine when outside of the network and when at Site B.  Site A would not connect because it was hairpinning.  Sonicwall support said we could not setup a hairpin NAT rule for the SSLVPN.  To get around this, I setup a DNS zone for domain.com and create an A host record within the local server DNS to point remote.domain.com to the LAN IP of the sonicwall.  Now Site A can access the SSLVPN portal page from within the LAN.  BUT, now site B cannot because that DNS record is forcing the connection over the site to site VPN which the Sonicwall does not allow.  Sonicwall support said there was no way to get it to work over the site to site VPN.  I know I could create RDP and VNC shortcuts for all remote users on their desktops, but that would be messy and much more difficult to maintain.  Does anyone have any tricks to get this to work?
0
Secondary VPN Connection Help Needed
We have a location that we are using for data processing
It has a current vpn to our location, they are setting up a failover connection to another ISP
How to setup a second vpn connection to the failover ip on the Fortigate
the Fortigate side does NOT have a secondary wan connection only the head end at this time
Do not need someone else to configure it for me just trying to find where to get more detail we have begun working on the Fortinet side, but keep falling into trouble when trying to setup the backup vpn on the Fortigate site
Just a gentle nudge towards to where to find this solution been scouring the net for hours so far
0
Allow multiple users to login and use the same application at the same time.
0
Hello,
I have open vpn server and all client work fine
I have also setup a new open vpn client config on it and its connect to the other servers.
I want when the client request a specific ip to route through vpn client connection that is established on server
so what I have to do in this case.
thanks.
0
I got the following error While trying to install Cisco AnyConnect Secure Mobility Client Version 4.7.00136 predeploy. "There is a problem with this Windows Installer package. A program run as a part of the setup did not finish as expected. contact your support personnel or package vendor".

i am trying to install this on Windows 10 Version 1803 OS build 17134.441

Your help is greatly appreciated.
0
Hi,

I would like to connect my laptop to our business network when I'm outise the office.
for doing this, I'm using the software Schrew to connect to the modem Lancom whose adress is 192.168.0.254
Behind the lancom there is a Win 2008 R2 sp1 server for the dhcp. its adress is 192.168.0.246
The VPN server is the Lancom.
Connect VPN is OK and i can ping whole the network.
The issue is when i want to get e-mail. Outlook can't connect to the Exchange Server running on the 192.168.0.246.

Can some help.
0
Hi experts.  My question is regarding the Ubiquiti Unifi AP-AC-LR.   I have 2 plants.  Plant 1 I have 5 of these devices installed.   Plant 2 I need to install 6 of them.  There is a vpn between the 2 sites.  Plant 1 is on 192.168.1.xxx.  Plant 2 is on 192.168.5.xxx.   Am I ok to install and configure the new AP's for Plant 2 thru my PC that is at Plant 1 that I configured the 5?  Will they cross the IP schema and configure properly or do I need to configure thru a PC at Plant 2?
0
I'm doing remote office setup for employees and while doing testing I have remote XP machines that log in to VPN Server but are actually not connected. When I ping or type in router ip I get local router page. Weirdly, this is not the case with windows 2000 virtual machines on os x laptops which ping and login to host router web page.
0
I have one user that can't connect to his work computer using a VPN and MS RDP, This user has been able to connect successfully for a long time and it just stopped all of the sudden, user states nothing was installed or changed on this windows 7 computer.

We use watchguard mobile ssl vpn software and then connect with rdp directly using a local static IP to connect to the work computer. The user can connect successsfully to the firewall using the vpn. The computer gets the correct IP address from the firewall and i can ping network resources like the server and his computer. But when we start the rdp connection using the IP address it says RDP can't connect due to one of the following reasons and give 3 like... the pc isn't on and so forth.

However i can connect to the same work computer successfully from my computer using the same vpn and rdp IP address so i know the work machine is turned on and ready and the issue is specific to this local machine. I have looked at the norton  360 security and it appears that RDP connection and program is allowed fine. i have also tried to turn off the symantec software with no success.

Help is appreciated

matt
0
I had this question after viewing Network Shares and Devices not showing through VPN.

I can connect successfully to remote router at office on W2K, OSX and view router setup page, but i cannot access any other nor can i ping any other host machines on remote private network. It appears samba browsing is working on os x network browser but that's it.
0
Can you change the IP addressing on Netgear Jetpack-the DHCP uses the same IP address scheme as internal network so VPN won't connect
0
We have number of devices which have an L2TP VPN connection to a Windows server.

It doesn't work for iPhone 8 devices running IOS 12 and using the EE mobile network - it fails to connect with "The L2TP-VPN server was unreachable. Verify the server address and try reconnecting. If the problem continues, contact your Administrator."
It does however work for anything else - for example:
  • iPhone 8 running IOS 11 on EE
  • iPhone 8 running IOS 12 on other mobile networks (O2, Vodafone, etc.) or Wi-Fi
  • iPad running IOS 12 on Wi-Fi
  • Android on any mobile network or Wi-Fi
  • Windows 10 on any network

So, you'd think EE would be able to help?  No, as the problem only started with IOS 12 they say it must be something in the update - and therefore Apple's responsibility.  Apple of course say that the problem must be at the EE end, as it works with other providers.  So, short of downgrading to IOS 11 we're stuck.

I found this, but no solution is posted:
https://community.ee.co.uk/t5/Apple/L2TP-VPN-connectivity/m-p/737163/highlight/false#M87064

We suspect it may be related to EE's implementation of IPv6, but don't have any specific information.

Has anyone else come across this?  If so, how did you work around or resolve it?
0
Windows Server 2012 R2 VPN and Netgear FVS336gV3.   I have configured the VPN Service on the server but I need to know what to configure on the Firewall to allow the connections, I have forwarded 1723 and tested it Now I have  a GRE Protocol 47 issue.  Please help
0
Hi guys

If someone asks, how do you encrypt data in transit, then how would one answer that? That question is quite vague, no? I mean, we have VPN connections from site to site. We also have an MPLS network. Along with that, we have an email system with SSL certificates installed for the OWA, but then I wonder whether that means Outlook data is not encrypted but only encrypted when using OWA?

Any help is appreciated
Thanks
Yash
0
I have about two dozen remote sites that I need to create VPN tunnel.  I have Checkpoint FW cluster here.  The 23 remote sites either have Cisco, Forcepoint, Palo Alto or Juniper firewalls.  Using IPSEC, I need a good plan for setting up individual tunnels to these disparate sites.  I have a general understanding of IPSEC but not the specifics for configuring each firewall.

Can you point me to good literature, or links, or video media that helps me lay out a plan for gathering all the information needed for/from each customer to roll out these VPNs?
1
I just set up  a site to site VPN between an ASA 5510 and a Meraki  MX64. The site are connected and up but cant communicate across them. Im sure its a routing issue. Here is an image of my setup.Network

I cant ping anything on the inside of either.

Here is what I have for routing

nat (inside,outside) source static NETWORK_OBJ_10.110.100.0_24 NETWORK_OBJ_10.110.100.0_24 destination static NETWORK_OBJ_10.5.0.0_24 NETWORK_OBJ_10.5.0.0_24 no-proxy-arp route-lookup
0

VPN

24K

Solutions

23K

Contributors

A virtual private network (VPN) is a network that uses a public telecommunication infrastructure, such as the Internet, to provide remote offices or travelling users access to a central organizational network securely. VPNs encapsulate data transfers using secure cryptographic methods and other security mechanisms to ensure that only authorized users can access the network and that the data cannot be intercepted.