This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSL VPN & Spoof

Hi,

I set up ssl vpn capabilities in this context :
DMZ network : 176.16.x.x
Internal : 192.168.x.x

My ssl client connect without a problem and i can do whateveer i want in the DMZ.
Now if i also want to do whatever i want in the Internal network, i have to set
"Spoof protection" to "off".

Can i use the "Spoof protection" but still using ssl vpn to access my internal network remotly ?

This thread was automatically locked due to age.

Parents

0 dilandau over 13 years ago

Do you have a SNAT or nat Masq for the vpn pool?
That might cause the spoofing, if for example you set it up to change the source to the dmz interface when you try to access the internal network it would have the wrong source address. The log entries from the packet filter would be useful to see why the packets are being dropped because of spoofing.
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 dilandau over 13 years ago

Do you have a SNAT or nat Masq for the vpn pool?
That might cause the spoofing, if for example you set it up to change the source to the dmz interface when you try to access the internal network it would have the wrong source address. The log entries from the packet filter would be useful to see why the packets are being dropped because of spoofing.
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data