Is there possible that we can access other vlan on the same MX router via client VPN
I have set up a client vpn on MX64 and test good.after connect it,I got a internal VPN address like 192.168.1.100/24.But I want to visit another address in different subnet (like 192.168.2.100/24).Do you know how to make it happen?
By default I believe this is enabled. If you are using multiple VLANS then possibly it isn't enabled on the VLAN (Security Appliance>Configure>Addressing and VLANS> Routing> Click VLAN to modify. Verify "In VPN" is Checked.
Also see below link for some info on L3 rules to check.
Thanks for your reply. I am currently running on 14.39.But I can not see In VLan option and adding static route...... When I try to add a static route in routing page ,It will say"Static lan route subnets cannot be contained by (or be equal to) a client VPN subnet." Is version updated?or some reason?
Hi, 1/2,Yes,all subnet has been created, and GW set to .1(like 192.168.100.0/24,gw set to 192.168.100.1) 3,No rules for blocking traffic I can ping all subnet's GW( .1 ) from VPN.but can not ping the IP in other subnet.and I am sure the IP is alive
You most likely allready solved this problem. But I just wanted to share some info in case others have the same issue. I had the same problem. But I remembered I unchecked "Use default gateway of external network" in my vpn settings, so my internet traffic won't be slowed down by VPN. I noticed I had the same problem as you. I could not access a specific VLAN. Then it came to me. The VPN will be a gateway to your primary lan. your computer doesn't recognise the subnet and sends it to the internet instead of the vpn. When I check "use default gateway of external network" I can access all VLANs.