Search found 29 matches

by THaala
07 Sep 2021, 14:33
Forum: SG Discussions
Topic: command line ike and ipsec commands
Replies: 1
Views: 10958

command line ike and ipsec commands

Hello, i wonder why some ipsec SA can exist without covered ike negotiation. I have a lot of "LAST RESORT" - VPN. Clients connect from mobile provider radio networks. Because of all IPs are NATted very often this type of VPN works in IKEv1 with aggessive mode and NAT Traversal only. However, because...
by THaala
07 Sep 2016, 11:42
Forum: Feature Requests / Product Enhancements
Topic: Traffic - Management Threshold Rules
Replies: 1
Views: 3210

Traffic - Management Threshold Rules

Traffic - Management Threshold Rules currently we are bothered by a lot unattended access dmz rdp terminal. It would be nice to define theshold rules to blacklist IP's accessing more often than xxx connections/hour or so. Currently there are only actions with connections/second possible! rgrds, Thilo
by THaala
02 Aug 2016, 08:44
Forum: SG Discussions
Topic: claister console commands "ike" vs "ipsecstats"
Replies: 2
Views: 3778

Re: claister console commands "ike" vs "ipsecstats"

Yes - i am wrong - sorry.
i struggled while assuming ike and ipsecstats migrate to ike

Regards,
Thilo
by THaala
21 Jul 2016, 14:28
Forum: SG Discussions
Topic: claister console commands "ike" vs "ipsecstats"
Replies: 2
Views: 3778

claister console commands "ike" vs "ipsecstats"

Clavister plans to deprecate ipsecstats in the future. In the current constellation this would be a big fail. Ipsecstats and ike are not fully compatible. In my roaming vpn section i have often some "dead ends" which can be found by "ipsecstats". But they are not found with "ike -show". In this case...
by THaala
07 Apr 2016, 10:01
Forum: SG Discussions
Topic: VLAN for HyperV
Replies: 6
Views: 6439

Re: VLAN for HyperV

Dear Peter, after a master explained this, it looks always easy. I guess my thinking was too complicated. I thought bringning VM-addresses to IF6 was the right way but route the default-gateway to that VLAN does the trick instead. The meaning of that additional entries of LocalIP and DefaultGateway ...
by THaala
06 Apr 2016, 15:59
Forum: SG Discussions
Topic: VLAN for HyperV
Replies: 6
Views: 6439

Re: VLAN for HyperV

...

it is maybe an easier way to bring the defaut - gateway 11.11.11.145 as PROXY to the VLAN2222 ? But how?
this should not have negative influence of existing NAT-routing between IF1 and IF6.

thanks in advance..

BR
Thilo
by THaala
05 Apr 2016, 17:10
Forum: SG Discussions
Topic: VLAN for HyperV
Replies: 6
Views: 6439

Re: VLAN for HyperV

Hello Peter, the idea was to connect DMZ to internet by switching without NAT. The address .158 is used for internet access of employees from (10.10.10.x network). Remaining adresses of (11.11.11.144/28-network) should be accessible through VLAN2222 from VMachines. I dont want to use NAT or SAT for ...
by THaala
05 Apr 2016, 11:53
Forum: SG Discussions
Topic: VLAN for HyperV
Replies: 6
Views: 6439

VLAN for HyperV

Dear Users, i am struggling here into a problem using/configuring VLAN connecting Virtual machines. To access internet i need to NAT all traffic behind 11.11.11.158 from Local network. There are some other ip adresses free to allow DMZ - traffic to VMs. Therefore i want to capsule this type of traff...
by THaala
15 Mar 2016, 14:33
Forum: SG Discussions
Topic: Virtual Routing to different ISP's
Replies: 5
Views: 5278

Re: Virtual Routing to different ISP's

Thank you Peter,

i followed simply your post from 10th mar. And it works.
Thank you.
by THaala
06 Mar 2016, 21:14
Forum: SG Discussions
Topic: Virtual Routing to different ISP's
Replies: 5
Views: 5278

Virtual Routing to different ISP's

Hi, i need advice to virtual routing setup. I have two different ISP's on two independend Interfaces. I want to allow roaming VPN (roaming means -> incoming source-ip is unpredictable) - connections to my clavister allowing both interfaces. How to ensure that outgoing packets of vpn - traffic uses s...