PDA

View Full Version : Secure Client weirdness



philofish
2006-03-12, 15:27
Wonder if someone can help here if poss?

I have a simple setup

Client---->FW1----->management server
Client IP = 194.216.3.1
FW1 = 194.216.3.125 & 192.168.100.1
management server = 192.168.100.254
Office mode subnet = 192.168.99.0/24

The client is windows 2000 running secure client software
The FW1 module is running R55 and policy server

When i connet using secure client and NO office mode the IKE negotiation works fine and i am able to connect to systems within the LAN behind the firewall

When i use office mode - i get the following
Negotation succeeded - tunnel test failed

And

Logon to policy server failed

What i cant understand is that when i run netstat -na | findstr 18231
i get a SYN_SENT from 192.168.99.1 --> 194.216.3.1

Of course my private IP wont be able to conect - why is this happening?

Thanks

johngwyn
2006-03-14, 21:38
I had to put in a rule to allow the tunnel test, check the logs see if it is getting blocked by a rule

HTH
John

philofish
2006-03-15, 11:00
John

Thanks - is this tunnel test TCP 18231?

And how do i place the rule? is it from the assigned office Private IP to the firewall?

Many Thanks