One of our software vendor is trying to access our XP machine. The machine is behind the firewall "Symantec VPN/Firewall Appliance" the vendor wants the following changes made to be able to access the machine. I personally don't have a lot of experience with VPN. However, I have already made those changes but the vendor is not able to access the machine...I don't know what I am doing wrong...Can someone help. I would really appreciate it. Thanks in advance.
Symantec VPN hardware device:
Configure to allow XP PC to be accessible from the Internet.
A NAT address MUST be assigned to the Windows XP machine in order for any rules to work!
Network address translation from a public IP address to the XP PC's internal IP address.
Rules:
Terminal Services
Add a rule to allow the following:
WAN range xxx-xx-xxx-xx To xxx-xxx-xx-xxx Windows XP Machine IP Address for port xxxx
This will allow us to work on the PC
HTTP (Web Site)
Add a rule to allow the following:
WAN Range * (any)
To Windows XP Machine IP Address for port 80
This will allow access to IIS from the Internet.
I got the following message from the vendor.....
I cannot access the XP machine using the public address (66.0.155.170). I know that address is available over the internet because I can ping that address. The possible causes to this problem may be with the firewall. Do you know if the public address has been set up with NAT (network address translation) to the XP's internal IP address? If it has, do you know if firewall rules were configured (a firewall rule to allow HTTP from the WAN, a firewall rule to allow terminal services from the WAN and a firewall rule to allow PcAnywhere from the WAN) on the Symantec VPN hardware device?
Symantec VPN hardware device:
Configure to allow XP PC to be accessible from the Internet.
A NAT address MUST be assigned to the Windows XP machine in order for any rules to work!
Network address translation from a public IP address to the XP PC's internal IP address.
Rules:
Terminal Services
Add a rule to allow the following:
WAN range xxx-xx-xxx-xx To xxx-xxx-xx-xxx Windows XP Machine IP Address for port xxxx
This will allow us to work on the PC
HTTP (Web Site)
Add a rule to allow the following:
WAN Range * (any)
To Windows XP Machine IP Address for port 80
This will allow access to IIS from the Internet.
I got the following message from the vendor.....
I cannot access the XP machine using the public address (66.0.155.170). I know that address is available over the internet because I can ping that address. The possible causes to this problem may be with the firewall. Do you know if the public address has been set up with NAT (network address translation) to the XP's internal IP address? If it has, do you know if firewall rules were configured (a firewall rule to allow HTTP from the WAN, a firewall rule to allow terminal services from the WAN and a firewall rule to allow PcAnywhere from the WAN) on the Symantec VPN hardware device?