surfgatinho
MIS
Hi
I've just taken over running a small network with a big firewall (Checkpoint 1 / VPN1 on Nokia) and I haven't really got to grips with it.
I need to set up a VPN to a Win2k domain for mobile clients. The method I've tried is setting up a RAS server which authenticates with the domain controller using RADIUS.
I've got 2 interfaces on the RAS box one on the DMZ and one on the LAN.
Problem 1: There seems to be routing issue, when I try to connect from the LAN using the LAN interface everything works, however if I try the same on the DMZ interface from the LAN it connects but won't authinticate.
Also I can't connect to an external VPN from my LAN. I tried all this with the firewall policy set to any, any etc, ie no restriction
Problem 2: can't get NAT to point public IP address to my RAS box in DMZ even though config is identical to that of our web server.
Any suggestions greatly appreciated.
I've just taken over running a small network with a big firewall (Checkpoint 1 / VPN1 on Nokia) and I haven't really got to grips with it.
I need to set up a VPN to a Win2k domain for mobile clients. The method I've tried is setting up a RAS server which authenticates with the domain controller using RADIUS.
I've got 2 interfaces on the RAS box one on the DMZ and one on the LAN.
Problem 1: There seems to be routing issue, when I try to connect from the LAN using the LAN interface everything works, however if I try the same on the DMZ interface from the LAN it connects but won't authinticate.
Also I can't connect to an external VPN from my LAN. I tried all this with the firewall policy set to any, any etc, ie no restriction
Problem 2: can't get NAT to point public IP address to my RAS box in DMZ even though config is identical to that of our web server.
Any suggestions greatly appreciated.
