|
Hello,
we've been trying to get SecuRemote to work with
Encapsulationfrom the Internet to a mail server in a remote network, with no
sucess.
This is the configuration: Dialup connection to the Interntet | | Internet Router | | Firewall-1 Ver.4.1 (Linux) | | ---------------------------------------- Internal Network | | | | MailServer_LAN LAN_Router (IP: 192.168.0.1) | | | RemoteNetwork_Router | | ------------------------ Remote Network | | MailServer_RemoteNetwork (IP: 192.168.3.1) From the dial-up connection, we are able to retrive the keys from Firewall-1. The Firewall object has FWZ as the Encription Method. The encription domain that is defined includes both the MailServer_LAN and the MailServer_RemoteNetwork. When accesing the MailServer_LAN (with encapsulation enabled) with the internal ip address of the server (192.168.0.1), it works fine. Actualy, if we make the changes in the encription domain, we can acces any machine that is in the Internal Network (192.168.0.0). BUT, WHEN WE TRY TO ACCES ANY MACHINE IN THE Remote Network (192.168.3.0) INCLUDING THE MailServer_RemoteNetwork WITH ENCAPSULATION AND USING THE INTERNAL IP ADDRESS OF THE SERVER (192.168.3.1), IT DOESN'T WORK. The Default Gateway for MailServer_RemoteNetwork is RemoteNetwork_Router. The Default Gateway for RemoteNetwork_Router is LAN_Router. The Default Gateway for LAN_Router is FireWall-1. The Default Gateway for MailServer_LAN is FireWall-1. The Default Gateway for FireWall-1 is Internet Router. So it can't be a routing problem. CAN YOU PLEASE HELP US WITH THIS?????? THANKS. |
[FW1] SecuRemote and Encapsulation
Mar�a del Carmen Angulo Violantes Fri, 16 Jun 2000 09:55:39 -0700
