We currently have a vpn1/fw1 module in place, and a seperate machine with management, and logging. The other day i added a second vpn1/fw1 module which is in a remote office connected through point to point T1. Here is how it looks
|New ISP|<-->|Remote Office|<--point to point-->|Corporate Office|-->|Current ISP|
The enforcement module in question is the one in the Remote office leading out to the New ISP.
My problem is the i am unable to sussfully NAT the Remote office to go out through the new enforcement module.
New Module
Windows 2000 Server SP3 with/latest updates
Vpn-1 FW-1 NG FP3 Hot1, Hot2, and SSL
Old Module
Windows 2000 Server SP2 With Some Hot fixes
VPN-1 FW-1 NG FP3 Hot1, Hot2, and SSL
Management Station
Same as Old Module.
License on new module installed, I was also able to install a policy without any problems.
On the New Enforcement Module, a am able to browse the internet without any problem. Routes are setup leading back in through the LAN. I have been able to succefully ping any machine inside the Local network from the New Enforecement Module.
On the Worstation side i setup a rule to alow a particular machine to browse the internet through the new firewall.
In the Management Station/Logging it shows that the workstation is succefully making it out the firewall, but from the workstation you do not get any type of reply page not found.
On the New enforecement module. I check to see if there were any arp entrys for the NAT fw ctl arp, the workstation in question came up.
I have tried to Hide workstation behind FW, and static addresses. Same result, i have also tried to nat the entire local network, same result.
In the management Station i have changed the view options to vew the nat rule number, and as the workstation browses the internet it appears blank.
Thanks
Any help would be greatly appreciated.
|New ISP|<-->|Remote Office|<--point to point-->|Corporate Office|-->|Current ISP|
The enforcement module in question is the one in the Remote office leading out to the New ISP.
My problem is the i am unable to sussfully NAT the Remote office to go out through the new enforcement module.
New Module
Windows 2000 Server SP3 with/latest updates
Vpn-1 FW-1 NG FP3 Hot1, Hot2, and SSL
Old Module
Windows 2000 Server SP2 With Some Hot fixes
VPN-1 FW-1 NG FP3 Hot1, Hot2, and SSL
Management Station
Same as Old Module.
License on new module installed, I was also able to install a policy without any problems.
On the New Enforcement Module, a am able to browse the internet without any problem. Routes are setup leading back in through the LAN. I have been able to succefully ping any machine inside the Local network from the New Enforecement Module.
On the Worstation side i setup a rule to alow a particular machine to browse the internet through the new firewall.
In the Management Station/Logging it shows that the workstation is succefully making it out the firewall, but from the workstation you do not get any type of reply page not found.
On the New enforecement module. I check to see if there were any arp entrys for the NAT fw ctl arp, the workstation in question came up.
I have tried to Hide workstation behind FW, and static addresses. Same result, i have also tried to nat the entire local network, same result.
In the management Station i have changed the view options to vew the nat rule number, and as the workstation browses the internet it appears blank.
Thanks
Any help would be greatly appreciated.