I have recently move the Management Console from the Firewall to a server
behind the firewall in our protected network, and have lost the ability to
manage and receive logs from a remote machine. We are based in New Zealand,
and the remote machine is in Fiji, so I can't just get on a plane and check
it out.
The old configuration is (use courier font for spacing):
-------- --------
| |a.c.b.d x.y.z.w| |
| Fiji |------------------| NZ |-------------Internal network
(156.149.0.0)
| | | |
-------- --------
The Internal Network is not routable from the outside world (for security
reasons).
The new configuration is:
-------- --------
| |a.c.b.d x.y.z.w| |
| Fiji |------------------| NZ |-------------Internal network
(156.149.0.0)
| | | | |
-------- -------- |
| 156.149.68.5
--------
| |
| Mgmt |
| Svr |
--------
The management server gets logs and can push policies to the NZ Firewall,
but not the Fiji Firewall. I have changed the management console IP address
on the remote (Fiji) machine, and set up the IKE password at both ends. I've
even tried statically NATing the Management Console to an external (x.y.z.v)
address, but with no luck.
We are running CP2000 on both machines, on an NT platform (I'm desperately
wishing I had deployed an appliance now...).
What am I missing?
Any help would be appreciated.
Craig./
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
