- Posts: 29
- Thank you received: 0
problem with IAS
17 years 11 months ago #18482
by netbaba
Admin of Wellage Community
www.wellage.net
problem with IAS was created by netbaba
I have configured a VPN with a cisco 857 SDM, and i have installad IAS on a 2000 server, but the 2000 server cannot navigate on the external network... Any ideas?
Admin of Wellage Community
www.wellage.net
17 years 11 months ago #18487
by Smurf
Wayne Murphy
Firewall.cx Team Member
www.firewall.cx
Now working for a Security Company called Sec-1 Ltd in the UK, for any
Penetration Testing work visit www.sec-1.com or PM me for details.
Replied by Smurf on topic Re: problem with IAS
Sorry gonna need a lot more detail then whats provided. Where is the Windows 2000 server ? Is the VPN Up and you cannot contact the Server ? Do you want to use the Windows 2000 IAS server with the VPN ? Etc...
Wayne Murphy
Firewall.cx Team Member
www.firewall.cx
Now working for a Security Company called Sec-1 Ltd in the UK, for any
Penetration Testing work visit www.sec-1.com or PM me for details.
17 years 11 months ago #18501
by netbaba
the router is connected to a linux firewall. The other NIC of the firewall is connected to the LAN. The windows 2000 server is in the LAN. The VPN is up, but from the 2000 server I cannot access the external networks.
Admin of Wellage Community
www.wellage.net
Replied by netbaba on topic Re: problem with IAS
Sorry gonna need a lot more detail then whats provided. Where is the Windows 2000 server ? Is the VPN Up and you cannot contact the Server ? Do you want to use the Windows 2000 IAS server with the VPN ? Etc...
the router is connected to a linux firewall. The other NIC of the firewall is connected to the LAN. The windows 2000 server is in the LAN. The VPN is up, but from the 2000 server I cannot access the external networks.
Admin of Wellage Community
www.wellage.net
17 years 11 months ago #18503
by TheBishop
Replied by TheBishop on topic Re: problem with IAS
You must have a different IP subnet at both ends of the VPN tunnel in order for the traffic to route across it. Don't get sidetracked with the networks in between; if the tunnel is up then they are not likely to be your problem
17 years 11 months ago #18505
by netbaba
I haven't understand... 2000 server is in 192.168.1.0/24, router in 192.168.2.0/24, and without the vpn configuration 2000 server can access the external network...
Admin of Wellage Community
www.wellage.net
Replied by netbaba on topic Re: problem with IAS
You must have a different IP subnet at both ends of the VPN tunnel in order for the traffic to route across it. Don't get sidetracked with the networks in between; if the tunnel is up then they are not likely to be your problem
I haven't understand... 2000 server is in 192.168.1.0/24, router in 192.168.2.0/24, and without the vpn configuration 2000 server can access the external network...
Admin of Wellage Community
www.wellage.net
17 years 11 months ago #18511
by Smurf
Wayne Murphy
Firewall.cx Team Member
www.firewall.cx
Now working for a Security Company called Sec-1 Ltd in the UK, for any
Penetration Testing work visit www.sec-1.com or PM me for details.
Replied by Smurf on topic Re: problem with IAS
Sorry netbaba but i think people don't fully understand what you want due to a lack of information and details
Sahirh provided this sticky to cover asking questions so you can get a better response www.firewall.cx/ftopict-668.html .
I am still not fully understanding how its configured. You have a Cisco 857 SDM, you are establishing a VPN connection to your main corporate office through a linux firewall. What is the VPN head end device that the router is connecting the VPN to ?
Where is the 2000 IAS server located (is this IAS or ISA ?) ? Is this at the remote site with the 857 router or is this at the main corporate office ?
I am not too sure how much i will be able to help with this one but i am sure if you provide all the necessary details above someone else in the forum may be able to provide an answer that you are looking for.
Thanks
Sahirh provided this sticky to cover asking questions so you can get a better response www.firewall.cx/ftopict-668.html .
I am still not fully understanding how its configured. You have a Cisco 857 SDM, you are establishing a VPN connection to your main corporate office through a linux firewall. What is the VPN head end device that the router is connecting the VPN to ?
Where is the 2000 IAS server located (is this IAS or ISA ?) ? Is this at the remote site with the 857 router or is this at the main corporate office ?
I am not too sure how much i will be able to help with this one but i am sure if you provide all the necessary details above someone else in the forum may be able to provide an answer that you are looking for.
Thanks
Wayne Murphy
Firewall.cx Team Member
www.firewall.cx
Now working for a Security Company called Sec-1 Ltd in the UK, for any
Penetration Testing work visit www.sec-1.com or PM me for details.
Time to create page: 0.141 seconds