Hi,
my customer have a SRX210 firewall and uses Dynamic VPN with Pulse client.
Internal (trust): 192.168.0.0/24
External (untrust) to internet: 62.96.112.138/29
There is an address pool with a 10.10.250.0/24 network for the vpn users.
And a policy from untrust to trust to give access.
This is all working!
Now the customer wants to give the vpn users access to an external address. How should I configure this?
External IP address on untrust interface: 82.135.48.56/32
clients {
clients_dynamic_vpn {
remote-protected-resources {
192.168.0.0/24;
82.135.48.56/32;
}
ipsec-vpn vpn_dynamic_vpn;
}
I have logged in with Junos Pulse and checked the routinglist under windows. And there is now a rule to forward 82... to the vpn interface/ip (10....)
Then I have tried to configure a vpn secuity policy from untrust to untrust to allow this connection. But it don't works.
Jan