Hi Everybody
Lately I had to configure Brick, so anyone could connect using ALU IPSec Client to this Brick, and have access to dwa LANs, let's say:
- 192.168.10.0/24, connected to brick's eth1 port
- 192.168.20.0/24, connected to brick's eth2 port
Also, there is WAN connection, trought eth0 port, and direct connection to PC with ALSMS (eth7 port).
Since I'm kind of newbie with Bricks I stucked.
So far, I connected both LANs and gave eth1 address 192.168.10.1, eth2 respectively 192.168.20.1, but haven't applied any zone rulset to those ports. I connected Brick to WAN, and applied zone ruleset that makes possible for host in both LANs to reach WAN (internet). This is actually predefined "vpnzone" ruleset, with one line I added that enables NAT for normal (non VPN traffic) traffic.
Also, I created a VPN Tunel Client Endpoint on WAN interface and it works.
Problem is that when host is connected through VPN it connot reach LANs, nor WAN (I set up DNS addresses, and default gateway).
I studied ALSMS Policy Guide but found no answer.
Also, I have one more question. Is it normal that hosts from both LANs can't ping Brick ports? Also, I can't ping Brick public address. Is it normal, for security purposes, or is there an option that controls it?
Thanks for help!
FranzM