We don't have Juniper here, Fortinet, but I had the same issue until I created the remote network and HQ networks and provide a "route", which was really just the internal port on the firewall. Also, depending on your network, switches/routers at HQ may need to have route statements added unless the default 0.0.0.0 route covers it (which it does for all my field sites) Tom Miller Engineer, Information Technology Hampton-Newport News Community Services Board 757-788-0528
>>> Cameron <[email protected]> 10/20/2009 9:44 AM >>> Good morning all! Hardware - Juniper SSG-5 Situation - I've configured the firewall and can ping any internet IP and surf just fine. I've created VPN tunnels to our head office from the remote site and the tunnels come up fine (showing up on both ends) and yet I can't pass any traffic through to either side. I can ping the public IP of the firewalls no problem from the CLI on both sides. In place is the default policy (Trust -> Untrust, Any, Any, Permit...and also put in place (temp!) Untrust -> Trust, Any, Any, Permit). I spent well over 2 hours on the phone with the Juniper Tech Support and they didn't get any further then I did. I tried 2 brand new firewalls and got the same result on both. Any suggestions would be greatly appreciated as always! Cheers, Cameron Confidentiality Notice: This e-mail message, including attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure, or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
