Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations wOOdy-Soft on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Firebox X Edge MUVPN help needed

Status
Not open for further replies.
aristobulos

aristobulos

IS-IT--Management
Jan 4, 2005
3
US
I am the network administrator for a church and am in need of assistance. It appears that Watchguard isn't willing to help me any further. We have a Windows 2003 internal network running active directory. All internet is directed through a gateway on a proxy server with an internal and external NIC card. The proxy server is on an XP professional box and is Win Proxy. The external NIC card is connected to the firebox which in turn is connected to the cable modem. After having set up the MUVPN settings for a user on the firebox itself we have installed the MUVPN client software and set it up. We are able to establish a successful connection allowing us to ping the firebox and the external NIC card. However we are unable to join the network or access any network resources or ping the internal network at all. I am desperate for some sort of idea here. Please help.
 
Sort by date Sort by votes
If you can ping the external NIC on the Windows box that is behind the WatchGuard from an MUVPN client, but not any internal addresses that are behind the Windows box, then the problem is with the Win Proxy software.

Have you configured Win Proxy to pass the traffic you intended or all traffic since it is behind the WatchGuard?
 
Upvote 0 Downvote
I configured Win Proxy to allow IPSEC traffic through. Is there some other form of traffic that I should allow such as https?

Thank you greatly for your input.

 
Upvote 0 Downvote
Please list your IP address configuration for all of the interfaces on the Firebox and the Win Proxy PC. On the public addresses, hide the first octet (Example: x.10.109.30 255.255.0.0) This will help to explain what is going on.
 
Upvote 0 Downvote
Firebox external interface is x.89.37.126
Firebox trusted interface is x.168.111.1
Win Proxy external NIC card is x.168.111.2
Win Proxy Internal NIC is x.168.0.15

thanks much

 
Upvote 0 Downvote
You have two NAT devices working here. The MUVPN client reaches the x.168.111.0 subnet, but that is as far as it goes. Unless you were to establish a rule within Win Proxy (and I am not familiar enough with it to say on way or another) to route all inbound traffic from the MUVPN client's address that hits goes to x.168.111.2 inside to the internal network, you won't get anywhere.

If the Firebox has a built in DHCP, or better yet, just configure the Win2k3 box to be the DHCP server and get rid of Win Proxy. I don't see why you need it.
 
Upvote 0 Downvote
You wil have to add a static route in the firebox
The gateway ip would be the x.168.111.2
Network for the route would be x.168.0.15 network
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Sameer258
  • Locked
  • Question
Need Help to Find ip and mac address with email who one open my email
Replies
0
Views
1K
Sameer258
Sameer258
gkreg
  • Locked
  • Question
asa 5500-x url filtering
Replies
0
Views
565
gkreg
gkreg
TheFireman2
  • Locked
  • Question
Help with Watchguard Firebox M200 setup as a TMG 2010 replacement with ASA 5515 as main firewall
Replies
1
Views
324
hairlessupportmonkey
hairlessupportmonkey
intel233
  • Locked
  • Question
Cisco ASA 5510 -Static NAT Help
Replies
8
Views
960
intel233
intel233
tklamb
  • Locked
  • Question
ACL help
Replies
0
Views
210
tklamb
tklamb

Part and Inventory Search

Sponsor

Back
Top