Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
449
Views
0
Helpful
0
Replies

Cisco RV320 One/One NAT Firewall Blocking VPN Packets

Taylor Vick
Level 1
Level 1

‎06-29-2014 10:50 PM

I have two RV320s connected with a Site to Site VPN tunnel. One is at the main office and another at a branch office. At the main office I have several servers that utilize one/one NAT. I have firewall access rules setup such that only specific services (SMTP, HTTP, HTTPS, etc) are allowed to access these NATed servers and all other traffic is blocked from the WAN connection. However, clients on the remote router cannot fully access these NATed servers.

For example, I have clients at the remote location that want to remote into a server using VNC. They cannot access the server because VNC is not allowed in the access list for the firewall. If I add a rule to allow it, it becomes available to the remote clients but also to the public internet. Not really what I want. 

What am I missing here? Isn't a site to site VPN supposed to give the remote clients access to the network as if they resided on it in the first place? Do I need to configure my firewall differently?

Thoughts?

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents