- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
Re: Configure ProSafe as a full-tunnel VPN client with another ProSafe?
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Configure ProSafe as a full-tunnel VPN client with another ProSafe?
Is it possible to configure a ProSafe to route ALL network traffice (full tunnel) through an IPsec VPN terminated by another ProSafe?
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Re: Configure ProSafe as a full-tunnel VPN client with another ProSafe?
This could entail other units at a later time (eg FVS336Gv3 or SRX5308,) but the prototype scenario consists of an FVS318N at a remote office, terminated with an FVS318N at the main office. The need is to have ALL traffic from the remote office, not just the IP traffic destined for the main office, to traverse the IPsec tunnel rather than through the remote office WAN. Thereby, all traffic to and from the remote office traverse's the main office's WAN.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Re: Configure ProSafe as a full-tunnel VPN client with another ProSafe?
You can do so, you just need to change the traffic selectors so that it sends everything.
However the only way to route out the remote WAN at that point, would be to setup a proxy server remotely on a PC/Server. For example, in your local browser, to route the traffic from there, over the VPN, to the proxy PC/Server, and in turn out the remote WAN, and then all the way back for responses.
Obviously its slower, but that's how it is done.
Here is an old guide, on the proxy server and PC part of things: http://www.techradar.com/us/news/networking/how-to-set-up-a-proxy-server-704981
The rest is just the VPN setup.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Re: Configure ProSafe as a full-tunnel VPN client with another ProSafe?
To what should I set the traffic selectors?
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Re: Configure ProSafe as a full-tunnel VPN client with another ProSafe?
Actually in thinking on it, with the proxy server doing the traffic you would just use the local and remote subnets and vice versa on the other side. The proxy server, and the browser when configured to use it, will handle the WAN routing of all traffic.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Re: Configure ProSafe as a full-tunnel VPN client with another ProSafe?
So, back to my original question. There should be zero opportunity to data leak onto the remote office WAN -- it all needs to traverse the IPsec tunnel.