Search found 20 matches

by mattias
19 Jan 2009, 14:29
Forum: SG Discussions
Topic: Proxy Server
Replies: 6
Views: 7875

Re: Proxy Server

If the proxy server and clients are on the same network you will have to do a SAT+NAT instead of SAT+Allow, remember to allow the Linux/Squid proxy to access the internet before the SAT rule.
by mattias
19 Jan 2009, 12:53
Forum: SG Discussions
Topic: Proxy Server
Replies: 6
Views: 7875

Re: Proxy Server

Hi,

Have you tried this guide viewtopic.php?f=8&t=3422 ?

Mattias
by mattias
26 Nov 2008, 11:44
Forum: SG Discussions
Topic: CorePlus and LDAP
Replies: 2
Views: 3250

CorePlus and LDAP

I'm planing to use Clavister CorePlus 9.10 with LDAP support towards a Microsoft AD and have stumbled onto some problems or shortfalls in Clavister solution and wanted to know if and how you other might have solved it. First, LDAP is nice, LDAPS is nicer, have anyone come up with any secure solution...
by mattias
13 Nov 2008, 09:12
Forum: SG Discussions
Topic: Running fineTune 8.60 on Windows Vista
Replies: 6
Views: 5429

Re: Running fineTune 8.60 on Windows Vista

Best solution for you would be to add a new data source from inside FineTune on some drive other then c:, like a separate partition or a network share, when that is done, just copy the entire content from the defaults directory in c:\users to the new data source. Then just restart FineTune and you s...
by mattias
11 Nov 2008, 12:28
Forum: SG Discussions
Topic: Running fineTune 8.60 on Windows Vista
Replies: 6
Views: 5429

Re: Running fineTune 8.60 on Windows Vista

If you are running FineTune as non admin user the config is not saved in c:\program files\clavister\finetune\default as it might look like from inside FineTune, rather Vista saves all changes that should end up in c:\program files in the users own directory, don't remember the exact name (not runnin...
by mattias
07 Oct 2008, 16:11
Forum: SG Discussions
Topic: VPN routing
Replies: 6
Views: 5502

Re: VPN routing

if it's a lan to lan the nicest solution is to setup two tunnels one for each isp and then route balance / failover… and security equivalence on them. This off course requires an nice clavister on the other end. But what other firewalls worth the name are there... ;-) I also requires two ISPs on ea...
by mattias
07 Oct 2008, 12:58
Forum: SG Discussions
Topic: VPN routing
Replies: 6
Views: 5502

Re: VPN routing

In my answer I counted with it being Lan2Lan tunnels. There is also a problem depending on who should setup the VPN tunnel, the gateway with two ISPs or the remote end-points. All of it is solvable, but not always the "prettiest" solutions. If a IPSec tunnel could be terminated inside a VR, we could...
by mattias
02 Oct 2008, 13:15
Forum: SG Discussions
Topic: VPN routing
Replies: 6
Views: 5502

Re: VPN routing

The problem with IPSec in Clavister is that you have no other way to specify which interface to use other then using routes. So one solution to your problem is to always route the IPSec traffic over AUX, and the only way to do this is to route all remote endpoints over aux, for example: Iface Networ...
by mattias
07 Jul 2008, 11:22
Forum: SG Discussions
Topic: No connection to SG with new computer, need some advice
Replies: 4
Views: 4682

Re: No connection to SG with new computer, need some advice

The problem is the netcon remote management key, you are trying to connect to your SG with a default key, while your SG has a unique key, either copy of the datasource from your old computer (and thereby getting this unique key) or connect to the SG with a serial cable and follow the instructions in...
by mattias
02 May 2008, 10:40
Forum: SG Discussions
Topic: VPN L2TP IPSEC With Linux
Replies: 2
Views: 5640

Re: VPN L2TP IPSEC With Linux

I have never tested it myself, but it seems like Linux should have support for L2TP over IPSec, try follow this guide:

http://www.jacco2.dds.nl/networking/linux-l2tp.html