please bear with me...i am a newbee when it comes to netscreen.
i switched out my SMC Barricade for a NS 5XP on my home network. since doing this, i have not been able to create remote desktop connections back to our corporate office.
the way we usually connect to the corp office is to establish a checkpoint secure remote VPN. this is invoked by launching the RD session at a private IP back to our office. after establishing the VPN, i am able to telnet to these corportate hosts private IPs over port 3389, this tells me i can get there (after all was able to using my old SMC gateway). i believe the NS 5XP is blocking the traffic coming back.
on my NS5XP i created a new RD service with src ports to be 1024 thru 65535 and dest port to be 3389. created a rule for trust TO untrust and untrust TO trust. tried specifying both ANY service and the RD services i created. i dont see any trafic using these rules when viewing the NS policy reports and traffic is being stopped somewhere.
we also use Citrix ICA published apps and i have no problems even though ICA RDP and UDP services are not defined on my NS.
i am new to NS and think i have not set something up properly. i am not trying to create a NS to Checkpoint vpn. just trying to use my little VPN client/Remote Desktop thru the NS.
i tried looking through netscreen (Juniper's) web site but couldnt find anything there i havent already tried.
if there are any NS savy folks out there who could help, i would really appreciative it. i can send you my NS 5XP config and tech-support config files along for further examination.
thanks in advance!
i switched out my SMC Barricade for a NS 5XP on my home network. since doing this, i have not been able to create remote desktop connections back to our corporate office.
the way we usually connect to the corp office is to establish a checkpoint secure remote VPN. this is invoked by launching the RD session at a private IP back to our office. after establishing the VPN, i am able to telnet to these corportate hosts private IPs over port 3389, this tells me i can get there (after all was able to using my old SMC gateway). i believe the NS 5XP is blocking the traffic coming back.
on my NS5XP i created a new RD service with src ports to be 1024 thru 65535 and dest port to be 3389. created a rule for trust TO untrust and untrust TO trust. tried specifying both ANY service and the RD services i created. i dont see any trafic using these rules when viewing the NS policy reports and traffic is being stopped somewhere.
we also use Citrix ICA published apps and i have no problems even though ICA RDP and UDP services are not defined on my NS.
i am new to NS and think i have not set something up properly. i am not trying to create a NS to Checkpoint vpn. just trying to use my little VPN client/Remote Desktop thru the NS.
i tried looking through netscreen (Juniper's) web site but couldnt find anything there i havent already tried.
if there are any NS savy folks out there who could help, i would really appreciative it. i can send you my NS 5XP config and tech-support config files along for further examination.
thanks in advance!