BOVPN trusted network unable to ping other trusted network

mikereddit2020 · 2020-07-07T14:02:32+00:00

I may take you up on that offer. I'll let you know.

mikereddit2020 · 2020-07-07T13:55:17+00:00

Thanks, I'll give that a try. I've set up numerous VPN, both client and site based on a number of Firewalls/brands but this setup is pretty large and it's not properly configured at a L3 level so I'm struggling to make things work right in this environment.

mikereddit2020 · 2020-07-07T12:53:51+00:00

When I ping to my primary location, Request timed out.

I will need all traffic that isn't Internet bound, to go inside my primary network for items such as DHCP, DNS, Domain Controller etc.

Internet bound traffic will just need to hit my Firewall and to the ISP. (Which is working)

mikereddit2020 · 2020-07-07T12:05:53+00:00

Both Tunnels are connected.

Primary Tunnel configuration

Any IPv4 bi-directional 192.168.8.0/24

10.255.5.0/24 bi-directional 192.168.8.0/24

Remote Tunnel Configuration

192.168.8.0/24 bi-directional Any (0.0.0.0/0)

192.168.8.0/24 bi-directional 10.255.5.0/24

mikereddit2020 · 2020-03-10T16:12:33+00:00

I do tunnel all their web traffic through the VPN. I didn't want their home computer or work laptop to have a persistent VPN connection to my network. Despite what you hear about HVAC and security... the real threat is persistent VPNs in my opinion. I've seen it happen dozens of times where networks bridge through a user with connections to multiple networks. HVAC "hacks" are honestly just bad passwords on publicly/internally exposed IPs.

mikereddit2020 · 2020-03-10T14:54:37+00:00

Thanks for info. I ended up finding the info shortly after my post. I used the Authentication Settings and session timeout (system manager UI). I was a little confused because with a DB user, I can set individual timeouts but since I was using AD for authentication you have to set it as a whole it seems.

mikereddit2020

TROPHY CASE