squidflakes
MIS
Goodevening Gentlemen,
I'm in my 63rd straight hour in the office, and I don't get to go home till this issue is resolved.
I just replaced a group of 4 Checkpoints with PIXen in 4 different cities. Each of these PIXen is connected to a router on eth0 (outside) the local lan at eth1 (inside) and a private network router at eth2 (<office>_MPLS). All of the private network routers are running BGP and OSPF, as are the PIXen.
The problem I'm having is when I connect with a VPN client to the main site <site 1> the client can only access hosts behind the inside interface of <site 1>. All sites are accessable from hosts behind the inside interface, and the addresses in the vpnpool are allowed to cross the MPLS interfaces. I have NAT transversal on as well.
Anyone have any ideas as to why my VPN client originated traffic can't route out like normal traffic?
I'm in my 63rd straight hour in the office, and I don't get to go home till this issue is resolved.
I just replaced a group of 4 Checkpoints with PIXen in 4 different cities. Each of these PIXen is connected to a router on eth0 (outside) the local lan at eth1 (inside) and a private network router at eth2 (<office>_MPLS). All of the private network routers are running BGP and OSPF, as are the PIXen.
The problem I'm having is when I connect with a VPN client to the main site <site 1> the client can only access hosts behind the inside interface of <site 1>. All sites are accessable from hosts behind the inside interface, and the addresses in the vpnpool are allowed to cross the MPLS interfaces. I have NAT transversal on as well.
Anyone have any ideas as to why my VPN client originated traffic can't route out like normal traffic?