01-06-2021 08:29 AM
I'm aware of how to set this for remote access VPN via group policy, however I want to set this for site-to-site VPN. I understand that the command is global and should apply to remote access AND site-to-site, however this client isn't doing remote access and doesn't have a RA license, therefor I cannot edit the default group policy.
Thanks in advance.
Solved! Go to Solution.
01-26-2021 07:09 AM
Hello @Greg Terkanian
Just tried it in my lab, you can configure it using FlexConfig in FDM.
Best regards
Rick
01-06-2021 10:07 AM
I'm not sure there's a way to do this. If I understand you correctly, you're running FDM and want to allow traffic from the remote side of the site-to-site VPN tunnel. Following this article: https://www.petenetlive.com/kb/article/0001681, towards the bottom he talks about having to create a rule on the outside interface allowing the networks from the remote side of the tunnel.
Does this help?
01-08-2021 07:37 AM
01-08-2021 07:45 AM
@Greg Terkanian I've not tried it myself, but use flexconfig to configure the sysopt command.
01-26-2021 07:09 AM
Hello @Greg Terkanian
Just tried it in my lab, you can configure it using FlexConfig in FDM.
Best regards
Rick
06-20-2023 07:15 PM
@rschlayer can you provide a bit more detail on how you did this? My flexconfig deployment does not give any errors but the command is not showing up in the config. I am on v7.3.1 FPR-1010
Thanks
06-21-2023 05:51 AM
@rschlayer please disregard. It seems like sysopt connection permit-vpn is now the default which I can see if I do "show running-config all".
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide