[vpn-help] Invalid settings are provided as an example in Netvanta guide

ADAM ACKERMAN ADAM.ACKERMAN at adtran.com
Fri Jul 30 15:12:28 CDT 2010


To whom it may concern:

 

The guide posted on the Support page (
http://www.shrew.net/support/wiki/HowtoAdtran) suggests that users
configure the VPN Selectors in the Netvanta as <Private Internal Subnet>
to "Any":

 

 

 

This is incorrect and will break all Internet access for the internal
subnet because the traffic would be "allowed"; the router thinks that
Internet traffic should be sent to the VPN client, instead of "Source
NAT'd" as it should be. The correct configuration of the VPN Selectors
should be one of the following:

 

(a)     <Private Internal Subnet> to <VPN Client Subnet>

a.       Following the guide this would be 10.1.2.0/24 to 10.2.27.0/24

(b)     Any to <VPN Client Subnet>

a.       Following the guide this would be "Any" to 10.2.27.0/24

 

Please update the guide posted on the Shrew Support Page.

 

Best regards,

 

Adam Ackerman

ADTRAN Netvanta Tech Support

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.shrew.net/pipermail/vpn-help/attachments/20100730/76e5c665/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.jpg
Type: image/jpeg
Size: 27168 bytes
Desc: image001.jpg
URL: <https://lists.shrew.net/pipermail/vpn-help/attachments/20100730/76e5c665/attachment-0001.jpg>


More information about the vpn-help mailing list