I'm trying to test a RO setup through GB3.3.1. The test topology is one W2K-loaded laptop behind the GB, connecting over the Internet to a Nortel Connitivity concentrator. The Nortel has a static IP range assigned. The W2K laptop has Nortel VPN client software loaded. Key exchange on the client and the concentrator is configured for IKE.
I have inbound accept filters created for TCP50. I tried to create filters for UDP500 and got a configuration error "Protocol Not Supported" (huh?). So there is no IKE filter. In theory I shouldn't need one as outbound access is now wide open/log all. Anyway, when I start the client, I see the connection made to the concentrator, authentication between the client and the concentrator, and then....nothing. The tunnel dies immediately. The concentrator logs "remote authentication successful" and then "remote logoff". Nothing pertaining to the connection is logged from the GnatBox. So, reading through the 3.3 Users Guide, and the VPN FAQ on the GTA website, I notice a few things: - the user guide points setup and configuration questions to the "GnatBox VPN Feature Guide". I can't find that manual on the website. Is it available? - GBPro does not support any manner of IKE VPN's. Is this true? - If I would like to use IKE for firewall-to-firewall connections; or an IKE client through a GBPro, I'd be required to purchase a Mobile VPN license. Is this true? - Why? Would buying the license enable protocol support for UDP500 since I don't appear to have any? - I can't run any type of IKE VPN client (Cisco, Nortel, etc...) through a GnatBox if the GnatBox can't create a VPN object for IKE? - What about PPTP and Microsoft's default W2K client? I'm having trouble with that as well. The website FAQ refers to an online tutorial "PPTP and GnatBox System", but there is no link. Is the tutorial available? Will setting up PPTP be fruitless as well without a special license? Thanks and best regards, Sam --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] To subscribe to the digest version first unsubscribe, then e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archive of the last 1000 messages: http://www.mail-archive.com/[email protected]
