Hello, we have a main site that we want remote users to vpn connect to.
The configuration is like this:
I’ve set up a nice VPN connection on the TRB500, using the fabulously easy to use RMS VPN Hub, and my laptop client is hooking up but I can’t ping the 192.168.1.x LAN. The problem is that I’m (obvs) on the wrong side of the USG firewall.
Please can anyone advise how I can configure the setup of the USG so that the traffic from the VPN clients gets through to the 192.168.1.X LAN?
Presumably I need some kind of route through the firewall but I want to avoid creating some massive security hole by essentially turning off the firewall on the USG and rendering it pointless.
So far I have added an FW rule to allow 192.168.255.X traffic through the FW but I’m getting this on a ping:
Request timeout for icmp_seq 0
92 bytes from 192.168.255.6: Destination Port Unreachable
Vr HL TOS Len ID Flg off TTL Pro cks Src Dst
4 5 00 5400 4265 0 0000 3f 01 b7cc 192.168.255.10 192.168.1.28
It feels like I’m pretty close but no cigar…
Any thoughts on this greatly appreciated!
cheers, Giles