Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

What am I missing

Status
Not open for further replies.

jbrusie

MIS
Mar 29, 2002
132
US
I'm trying to get an X750 to work with the mobile user VPN. I ser up a group and a user and the user needed to enter user name and password, got that working, had the user logged in and was showing connection. However I couldn't get anywhere on the network...I've got xx.x.x.x main network and the VPN users were being given a xx.x.Y.x network address and no dice.

using the Firebox DB for user and password...

What other info can I give to help find a resolution or what other things should I check? I didn't have anything set up for PPTP is that needed?

I'm a bit lost...

on a side note I made some changes and had a new "config" file created adn can't seem to get the client software to take it...where in the software can you tell it to pick it up??

I've done some searches on the issue and nothing seems to point me in the correct direction...

Thanks for any info!!

jbrusie
 
I have connection again, however i'm connected and thats it...no ping, http, etc...

hmmmm.
 
Incase you are using WSM 7.x, you need to create an 'Any' service. The 'Any' service will have the following properties:

Incoming:
From - ipsec_users
To - Trusted

Outgoing:
From - Trusted
To - ipsec_users

Save the configuration onto the Firebox and then check it out.
 
I am running Firebox X750e w/ Fireware v8.3.

I used to work with an X700 (not sure of software) and there were tabs for incoming and out going and now there don't seem to be the same tabs. Also under what policy tab does that need to be set? the MUVPN tab or the Firebox tab?

Thanks very much!

John
 
In Fireware Pro, the 'ANY' service gets auto created...so you can just check it out.

So can assign a Secondary address range for your Trusted interface and then assign Virtual IP Address from this Secondary Address that you assigned in your Trusted Interface.
 
Status
Not open for further replies.

Part and Inventory Search

Sponsor

Back
Top