Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1518
Views
0
Helpful
3
Replies

What Network Segment will the Altiga CLient consider Secure

dstihler
Level 1
Level 1

‎08-26-2000 11:15 AM - edited ‎03-08-2019 07:46 PM

Hello: Does the Altiga client 2.5.2 consider all network traffic as being terminated at the outside interface of the cisco 3015? we have 100+ cisco routers which all run RFC1918 addressing. Most use 192.168.1.0 for their private network. Clients on those routers are trying to get to our financial machines across the WAN. Our segment is also on private address space using 192.168.1.0. We have a pix box, cisco 3015, and inside router which serves as the default gateway with a static route to the pix at 192.168.1.254.

The 3015 is sitting in parallel with the PIX with an outside interface which is public and an inside interface on the 192.168.1.0 segment. If the 3015 has a pool of addresses 172.16.254.1-172.16.254.154 to hand off to the clients which attach to the 3015 what address do the clients try to get to from their end. If our financial machine is on 192.168.1.4 at our end do they try to get to that address? even if they are on an inside address space which is 192.168.1.0. Their own address might be 192.168.1.4 for all we know. We can't seem to get the client to ping anywhere, even their own gateway, once the client has authenticated.

Then I guess the next question is how does the client running the Altiga software get to his own network. Does he have to disconnect from the tunnel?

Labels:
0 Helpful
3 Replies 3

ciscomoderator
Community Manager
Community Manager

‎09-05-2000 10:18 AM

Thank you for your post to the Cisco Networking Professionals Connection discussion forums.

Are there any community members that have experience with Altiga client 2.5.2? If you can help this member, we invite you to share your solutions here.

Cisco Moderator

0 Helpful

jim.woods
Level 1
Level 1

‎09-19-2000 09:45 AM

I am having the same exact problem with 3000 series.

The VPN connection completes but the client can not ping anything and therefore can not use any of the allocated resources on my end.

All of my dialup and DSL users are working fine, but this one particular user is on another frame relay behind a PIX firewall with same network notation. as the concentrator is supplying.

Please let me know if you find a solution and I will do the same.

0 Helpful

sajithnair
Level 1
Level 1

‎09-25-2000 02:45 PM

3015's pool of ip addresses must be from the

network 192.168.1.0 because your 3015's private interface is on the segment 192.168.1.0

0 Helpful
Customers Also Viewed These Support Documents