Topic: Connect with Borderware to company

[JG]

I want to connect from a client PC with a borderware VPN client to my company's network.
I can't connect through my SME server, what actions to take to make this working

[Michael Smith]

I believe this is an issue w/Borderware 3.5 and previous that is fixed in Bordermanager 3.6; check out the link below for a PDF file that discusses Bordermanager, VPN and NAT.

http://developer.novell.com/research/appnotes/2001/september/01/a010901.pdf

Another Novell link:

http://support.novell.com/servlet/tidfinder/2959025

If I understand the problem correctly, to use a client machine on a NATed network to connect to a remote Novell site, you MUST have Bordermanager 3.6 at BOTH ends.

[JG]

Sorry had to be more specific,

The configuration:

A windows client with borderware client

SME e-smith 5.2.1

ADSL

Internet

Borderware Firewall server

Company network with microsoft and novell servers


When i connect the windows pc direct to my a ADSL connection it works, when i connect my windows client to my e-smith server it doesn't.

How to configure IPSEC and the firewall in E-smith to make this work

[Michael Smith]

As I stated in my previous post, unless you're running Borderware VPN 3.6 or better on both server & client I believe you're out of luck.  As you've discovered, it works when you're directly connected to the Internet but not when you're behind a NAT & firewall setup such as is created by SME.

[andrew]

The problem here is that BM's VPN uses protocol 57 which is not supported on the current kernal. Only kernal 2.4 supports this. I too am awating the kernal 2.4 sme server for this reason.

Andrew.

[Michael Smith]

I can't speak to "protocol 57" but I've experienced this EXACT problem on a network connected via cable modem and Microsoft Proxy Server.  That's why I researched it and found out about NAT and Bordermanager 3.6.