I've set up a VPN on MX64 with but there is no connection joy. The URL for server times out and can't ping the local company network server.
Thanks for any guidance.
Solved! Go to solution.
it sounds very much list a host-based firewall issue. A Packet capture taken from the LAN interface of the MX while trying to connect via the Client VPN connection would verify this (TCP RST).
Are you using site-to-site VPN or client VPN? Does the MX64 have a route to the server you are trying to access? Does the server have a route to the VPN subnet you are coming from?
Can you post some screenshots of your MX config? There isn't enough info in your post to help you.
MRCUR
Thanks for reply. First time with this device - Client VPN was configured on 192.168.5.0/24
Client VPN settings
Client VPN server | Enabled |
Host Name | test.dynamic-m.com |
Client VPN subnet | 192.168.5.0/24 |
(e.g., "192.168.1.0/24")
DNS nameservers | OpenDNS |
WINS | No WINS servers |
Secret | blocked |
Authentication | Meraki cloud |
Systems Manager Sentry VPN security | Disabled |
LAN is 192.168.1.0
No special route to server configured
Is the server you're trying to connect to in the LAN subnet (192.168.1.0/24)? If not, does the MX have a route to the subnet the server is in and does the server's gateway have a route to the VPN subnet?
You can add a static route in the MX as necessary and do the same on the gateway of the server if it's not the MX.
Yes, server is on the LAN subnet 192.168.1.0/24 and the MX is the server's gateway. Is there anything I'm missing?
Is the server's firewall configured to allow RDP? When you're connected to the VPN, can you ping the MX? Other servers? Can you ping the IP you get from VPN from the server?
it sounds very much list a host-based firewall issue. A Packet capture taken from the LAN interface of the MX while trying to connect via the Client VPN connection would verify this (TCP RST).
It was a firewall issue.
Many thanks.