Re: [FW-1] VPN problem

[Roelandts, Guy]

Title: VPN problem

Hi,

 

   You might be a bit more explicit ... what error is associated with the drop, what error does

the remote user get. What else have you enabled/disabled before adding the rule, what about

the implicit rules ??????

Met vriendelijke groeten - Bien � vous - Kind regards
Guy ROELANDTS
EMEA GS Internet Expertise Centre - CCSE-NG
Hewlett-Packard Belgium B.V.B.A./S.P.R.L.
E-mail : [EMAIL PROTECTED]
Tel: +32(02)729.77.44 (options 3 - 3 - 1)
Fax: +32(02)729.77.65
==========================================================
This message may contain confidential and/or proprietary information,
and is intended only for the person/entity to whom it was originally
addressed. The content of this message may contain private views and
opinions which do not constitute a formal disclosure or commitment
unless specifically stated. Should you receive this message by mistake
please inform the sender immediately.
==========================================================

-----Original Message-----
From: Raman Kalla [mailto:[EMAIL PROTECTED]]
Sent: 16 December 2002 01:34
To: [EMAIL PROTECTED]
Subject: [FW-1] VPN problem

Hi All,

 I installed an NT machine with NG FP1; everything is running smooth except the VPN. VPN client is not able to connect to the FW and access applications in internal NW.

Rule 1 : SecRemUsers@any        Internal_NW             any             client encrypt          FW

Rule 2:  any                    FW                      any             drop                    FW

If somebody tries to create a new site from outside, I see a packet drop because of Rule 2. Thanks in advance.

Raman Kalla

IMPORTANT NOTICES:  The information contained in this electronic message is privileged and confidential information intended only for the use of the individual(s) named above.  Please notify the sender by e-mail if you are not the intended recipient.  If the reader of this message is not the intended recipient, you are hereby notified that any dissemination, distribution or copying of this communication is strictly prohibited. HD Brous & Co., Inc. ("Brous") does not accept time sensitive, action-oriented messages or transaction orders, including orders to purchase or sell securities, via e-mail. Brous reserves the right to monitor and review the content of all messages sent to or from this e-mail address. Messages sent to or from this e-mail address may be stored on the Brous e-mail system.  Such may be produced at the request of regulators.  Sender accepts no liability for any errors or omissions arising as a result of transmission.