[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW-1] VPN with NAT
Hi Crist, You are "the best" Finally, we have solved this issue. I didn't allow the return connection in my FW-1 rules...Sorry. Thanks a lot. Angel ;-)) > -----Mensaje original----- > De: Mailing list for discussion of Firewall-1 > [mailto:[email protected]]En nombre de Crist > Clark > Enviado el: martes 28 de mayo de 2002 20:22 > Para: [email protected] > Asunto: Re: [FW-1] VPN with NAT > > > Angel Barcenilla García wrote: > > > > Hi Crist, > > > > You're right. I'm doing 1-to-1 NAT. I don't know if it would be > better to > > work with "hide" NAT?? > > > > Anyway, as you assumed in my side I have a CISCO VPN client for > Windows in > > order to connect to a VPN CISCO Concentrator. In the rule, I > have allowed > > ESP protocol, IKE UDP and IKE TCP. > > > > I get connection with the remote VPN Concentrator, that is, the secure > > connection is up, but when I try to connect with the final application > > (telnet) by means of the tunnel, I don't get any answer. I > really don't know > > why?? > > My first guess would be a routing problem. When your telnet > connection comes > out of the tunnel, the return connection need to find its way > back into the > tunnel for the return trip. Make sure that is happening. > > The problem does not really sound like it is a firewall issue. > -- > Crist J. Clark [email protected] > Globalstar Communications> > The information contained in this e-mail message is confidential, > intended only for the use of the individual or entity named above. > If the reader of this e-mail is not the intended recipient, or the > employee or agent responsible to deliver it to the intended recipient, > you are hereby notified that any review, dissemination, distribution or > copying of this communication is strictly prohibited. If you have > received this e-mail in error, please contact [email protected] > > ================================================= > To set vacation, Out Of Office, or away messages, > send an email to [email protected] > in the BODY of the email add: > set fw-1-mailinglist nomail > ================================================= > To unsubscribe from this mailing list, > please see the instructions at > http://www.checkpoint.com/services/mailing.html > ================================================= > If you have any questions on how to change your > subscription options, email > [email protected] > ================================================= > ================================================= To set vacation, Out Of Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] =================================================
|