not able to access particular subnet devices

[venkatnarayana]

Hi all

when my secureclient users connect to the site they are not able to access a particular subnet devices, where as they are able to connect to other subnet devices.

i have created a rule specifically for the subnet by allowing it but still the users are not able to connect.

regards

[melipla]

Where does a traceroute go? Is the network in your VPN domain? Is the client's LAN network overlapping with your VPN domain?

[venkatnarayana]

yes the network in our vpn domain but at a remote site. the clients lan network in not overlapping.

this is a site to site vpn. we are able to access between site to site , but the secureclient users are not able to access only servers on a particular subnet.

[abusharif]

Quote:

Originally Posted by venkatnarayana

yes the network in our vpn domain but at a remote site. the clients lan network in not overlapping.

this is a site to site vpn. we are able to access between site to site , but the secureclient users are not able to access only servers on a particular subnet.

Either:

a) Use route all traffic on the secureclient
or
b) define remote subnets in your gateway objects->topology "set domain for remote access comunity)

and ofc have rules in the rulebase allowing this kind of traffic.


If you are gonna try with route all traffic, besided changing the setting on the client (or profile depending on your setup) dont forget to activate "allow secureclient to route traffic through this gateway" option. It can be found on gateway object->remote access tab