Securepoint Support Forum

Securepoint Security Solutions Support Forum
https://support.securepoint.de/

VPN Passthrough

https://support.securepoint.de/viewtopic.php?t=219

Seite 1 von 1

VPN Passthrough

Verfasst: Fr 29.06.2007, 11:39
von ajl119
Hello.

I am having trouble configuring VPN pass through in securepoint for VPN connections that are set-up on the inside LAN to the outside WAN?

How do I do this?
Thank you :D

VPN Passthrough

Verfasst: Fr 29.06.2007, 11:43
von philipp
what kind of vpn?

VPN Passthrough

Verfasst: Fr 29.06.2007, 17:49
von ajl119
PPTP and L2TP in our case.
We still have a few clients where we need to start local PPTP and L2TP VPN's from workstations to gain access.
We are slowly migrating VPN's onto VPN servers but want to retain the ability to still be able to run VPN's from workstations. We are Nating on outgoing interface so I know IPSec will not work.

VPN Passthrough

Verfasst: Fr 29.06.2007, 18:22
von achim
perhaps this post will help you for pptp:
http://www.securepoint.de/support/topic.php?id=145

I try to translate:

- make a new service:
+ Name: "gre-related"
+ Protokoll: "47"
- search for groups were pptp-gre is in use.
- replace pptp-gre through gre-related
- ruleupdate

i also had to make two rules:
internet -> external interface -> pptp-group (dont know exact service yet)
internal network -> internet -> pptp-group (dont know exact service yet)

achim

VPN Passthrough

Verfasst: Sa 30.06.2007, 01:09
von M Goeres
ajl119 hat geschrieben: PPTP and L2TP in our case.
We still have a few clients where we need to start local PPTP and L2TP VPN's from workstations to gain access.
We are slowly migrating VPN's onto VPN servers but want to retain the ability to still be able to run VPN's from workstations. We are Nating on outgoing interface so I know IPSec will not work.
Why should IPSEC not work? - Nat-Traversal makes ist possible ;-)

I'm accessing different Lan's via VPN on the Safenet Client through the Securepoint without any special configuration. If there is a problem with the connection to from LAN 2 WAN/VPN-Endpoint we should have a look @ the logs of the appliance, client and the ruleset.

btw....PPTP might be a problem 'cause GRE is a portless protocol and problems may occur with different sessions @ the same time.

Regards

M.Goeres

VPN Passthrough

Verfasst: Mo 02.07.2007, 15:24
von ajl119
This worked perfectly:
"- make a new service:
+ Name: "gre-related"
+ Protokoll: "47"
- search for groups were pptp-gre is in use.
- replace pptp-gre through gre-related
- ruleupdate"

Thank you very much :-)
Alle Zeiten sind UTC+02:00
Seite 1 von 1

Powered by phpBB® Forum Software © phpBB Limited

Deutsche Übersetzung durch phpBB.de