vpn to office and access internal lan
Bookmark this page:
 Yahoo!
 Google
 Windows Live
 del.icio.us
 digg
 Netscape
|
|
|||||||||||||||||||
|
Posted by pIX2 on November 24, 2005, 5:02 pm
Please log in for more thread options I'm in a customer's office and I'm trying to vpn to my office. I can login using my cisco 4.6 vpn client and it was authenticated ok by my office's vpn cisco concentrator. But the problem is I can not ping / telnet to my office LAN. Can someone tell me what the customer needs to open up in his firewall, so i can access my office LAN >>>??
thanks for your help.
J | |||||||||||||||||||
|
Posted by Simon on November 25, 2005, 3:08 am
Please log in for more thread options > Hi,
> I'm in a customer's office and I'm trying to vpn to my office. I can > login using my cisco 4.6 vpn client and it was authenticated ok by my > office's vpn cisco concentrator. But the problem is I can not ping / > telnet to my office LAN. Can someone tell me what the customer needs > to open up in his firewall, so i can access my office LAN >>>??
> thanks for your help.
If you can connect with the vpn client then nothing else needs to be
> J > opened on the customer firewall. It's not something like the customers lan subnet is the same as your company subnet ? that would break things. simon | |||||||||||||||||||
|
Posted by pIX2 on November 25, 2005, 12:39 pm
Please log in for more thread options
Simon wrote: > pIX2 wrote:
> > Hi,
> > I'm in a customer's office and I'm trying to vpn to my office. I can > > login using my cisco 4.6 vpn client and it was authenticated ok by my > > office's vpn cisco concentrator. But the problem is I can not ping / > > telnet to my office LAN. Can someone tell me what the customer needs > > to open up in his firewall, so i can access my office LAN >>>??
> > thanks for your help.
> > J > > > If you can connect with the vpn client then nothing else needs to be
> opened on the customer firewall. It's not something like the customers > lan subnet is the same as your company subnet ? that would break things. > simon Well, if i'm outside the firewall of the customer, after I vpn in, I was able to ping/telnet to my servers in the office. If I'm inside the customer's firewall, I can vpn in but I'm unable to access any of my servers, such as telnet/ http, etc. ping, telnet, and http are open in the customer's firewall. I can ping yahoo, browsed web, etc. | |||||||||||||||||||
|
Posted by Mike Drechsler - SPAM PROTECTE on November 25, 2005, 12:47 pm
Please log in for more thread options pIX2 wrote:
> Simon wrote:
>> pIX2 wrote:
>>> Hi,
>>> I'm in a customer's office and I'm trying to vpn to my office. I can >>> login using my cisco 4.6 vpn client and it was authenticated ok by my >>> office's vpn cisco concentrator. But the problem is I can not ping / >>> telnet to my office LAN. Can someone tell me what the customer needs >>> to open up in his firewall, so i can access my office LAN >>>?? >>> thanks for your help. >>> J >>> >> If you can connect with the vpn client then nothing else needs to be
>> opened on the customer firewall. It's not something like the customers >> lan subnet is the same as your company subnet ? that would break things. >> simon >
> Well, if i'm outside the firewall of the customer, after I vpn in, I > was able to ping/telnet to my servers in the office. If I'm inside the > customer's firewall, I can vpn in but I'm unable to access any of my > servers, such as telnet/ http, etc. ping, telnet, and http are open in > the customer's firewall. I can ping yahoo, browsed web, etc. > They are using the same IP subnet as the network on the remote side. A small travel router may allow you to setup a simple little network where you can control the local IP subnet. Even if an intermediate network segment (the part between your little router and their firewall) has a conflicting IP range this should still work. It's a lame little hack that can work if you have no ability to renumber the networks. This is one of the reasons you should avoid using the common network numbering for consumer routers when you setup an office LAN with a VPN gateway. Try to avoid the 192.168.0.x-192.168.2.x ranges. -- WARNING! Email address has been altered for spam resistance. Please remove the -deletethispart-. section before replying directly. Mike Drechsler (mike-newsgroup@-deletethispart-.upcraft.com) | |||||||||||||||||||
|
Posted by Dennis Willson on November 29, 2005, 9:05 pm
Please log in for more thread options I'll bet that when you were outside the firewall you had a different IP address.
I'll also bet that you have the same IP address range at your office as the customer has. This causes problems. Simon wrote: > pIX2 wrote:
> >> Hi,
>> I'm in a customer's office and I'm trying to vpn to my office. I can >> login using my cisco 4.6 vpn client and it was authenticated ok by my >> office's vpn cisco concentrator. But the problem is I can not ping / >> telnet to my office LAN. Can someone tell me what the customer needs >> to open up in his firewall, so i can access my office LAN >>>??
>> thanks for your help.
>> J >> > If you can connect with the vpn client then nothing else needs to be
> opened on the customer firewall. It's not something like the customers > lan subnet is the same as your company subnet ? that would break things. > simon | |||||||||||||||||||
| Similar Threads | Posted |
| vpn to office and access internal lan | November 24, 2005, 5:02 pm |
| User unable to access sites from home office | January 22, 2008, 8:04 am |
| Netgear FVS318 reporting failed Admin logins from internal clients..... falsely? | April 9, 2005, 7:04 pm |
| SecuRemote and Office Mode | December 13, 2007, 7:58 pm |
| VPN into office using FVS318 router behind Cayman Router | April 5, 2005, 4:03 pm |
| VPN and Local access | June 30, 2005, 2:09 pm |
| VPN Disabled, still can't access LAN | September 26, 2005, 9:07 pm |
| VPN and Internet Access | April 1, 2006, 6:26 pm |
| VPN and Internet Access | April 1, 2006, 6:26 pm |
| VPN access through DSL router fails | March 15, 2005, 4:55 am |
| Access Internet/Email while using VPN | January 3, 2006, 6:15 pm |
| Access to IPSec VPN through Netscreen-10 fw | March 28, 2006, 2:38 pm |
| how to remote access a server via vpn? | May 28, 2006, 12:23 pm |
| VPN connection plus access over wireless | May 1, 2007, 8:22 pm |
| access win domain w/ cisco 800 easy vpn | February 10, 2005, 5:15 pm |