Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
622
Views
0
Helpful
3
Replies

Site To Site VPN Problems

WillStrain1315
Level 1
Level 1

‎06-17-2019 09:14 AM

We currently have a site to site VPN setup (using OpenVPN) and we are currently able to ping through the site to site but only our 3 servers on our network are able to RDP through it. We are pretty sure the issue is with our SG200 switch because when we tried plugging a workstation directly into our firewall (bypassing the switch) and it was able to RDP through the VPN with out any issues. Has anyone else had this type of issue? Does anyone have any suggestions on how to fix the issue? We have looked through the Switch and Firewall logs and we aren't seeing any issues. 

Labels:
0 Helpful
3 Replies 3

Reza Sharifi
Hall of Fame
Hall of Fame

‎06-17-2019 09:31 AM

Not familiar with SG-200 series switches but make sure the switch does not have any ACL blocking RDP protocol.

HTH

0 Helpful

Hector Gustavo Serrano Gutierrez
Cisco Employee
Cisco Employee

‎06-17-2019 09:58 AM

Hi @WillStrain1315,

- Is your SG200 acting just as a Layer 2 Switch to extend the VLAN or you are using it as Layer 3 Switch and Default Gateway for your VLANs?

- Is the IP addressing changing when you connect your Workstation to your Firewall? or the IP addressing is exactly the same?

Wondering if this a Routing issue ... The Switch shouldn't be blocking traffic by default, specially if it is being used as Layer 2 only.

0 Helpful

WillStrain1315
Level 1
Level 1
In response to Hector Gustavo Serrano Gutierrez

‎06-17-2019 10:10 AM

It is a layer 2 switch. While it has 2 VLANs on it the communications between the VLANs and between the VLANs and the internet are handled by the firewall. 

 

Since DHCP is managed by the firewall it should be keeping the same IP address, but I can double check.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card