VPN 3.6 slave to VPN 3.8 master
I have more or less gone through what I could to set this up.
I exported the BM 3.8 master encryption key (minfo.vpn) and imported that to
the BM 3.6 slave without any issue. I then created the slave (sinfo.vpn)
I had setup the vpn tunnel ip's as 192.168.10.1 and when these were both
masters, clients could access either one perfectly. We know the VPN's
I changed 1 to a slave, but I halted what I was doing as I noted that the
master and slave networks both are using 192.168.0.x for the private IP's.
1. Can a 3.6 slave talk to a 3.8 master?...F5 VPN software not compatible with version 3.6, so can't access my VPN
Summary: F5 VPN software not compatible with version 3.6, so can't access my VPN
Browser Details: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; GTB6.4; .NET CLR 1.0.3705; .NET CLR 1.1.4322; Media Center PC 4.0; .NET CLR 2.0.50727; WWTClient2; Windows-Media-Player/10.00.00.3990; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729)
From URL: http://hendrix.mozilla.org/
Note to readers: Hendrix gives no expectation of a response to this feedback
but if you wish to provide one you must BCC (not CC) the sender for them to
...Connect VPN client thru BM to another VPN
i, I have a problem connecting a client inside my network (10.x.x.x)
CISCO VPN CLIENT. My firewall is a Bordermanager 3.6 SP2a server
and I want to connect to other VPN server.
How I have to configure the BM serfver to connect internal client to
others VPN server ?????
Thanks in advance
let me understand.
Are you trying to connect with a Cisco VPN client to a CIsco VPN
or to a BM VPN server?
Novell Support Connection Volunteer Sysop
...3rd Party VPN client to site thru BM 3.6
We do not use VPN and have a BM 3.6 Server at our internet connection
point. There is a vendor coming for a presentation that requires the
salesperson to establish a VPN to their server through our BM 3.6 server.
Their specs call for UDP traffic to pass over ports UDP:500, UDP:1000, and
protocol 50 & 51 (IPSEC). I can set up the UDP packet exceptions but am
stymied by the Protocol 50 & 51 requirements. Can this be done for them
with our current configuration? If so, any pointers would be appreciated.
no, it can't be done. The NAT portion of the se...BM VPN site - to
Can i use BM 3.7 or 3.8 to create a site-to-site VPN with a BM server
on one site an a hardware VPN device (Cisco, Nortel) on the other site
Or does site-to-site VPN always need to be 2 BM servers ?
Jan Wiersma wrote:
> Can i use BM 3.7 or 3.8 to create a site-to-site VPN with a BM
server on one site an a hardware VPN device (Cisco, Nortel) on the
other site ?
> Or does site-to-site VPN always need to be 2 BM servers ?
3.7 is BMgr only. 3.8 should work with any IPSEC VPN.
...VPN problem after upgrade BM 3.6 to 3.7
I used BM 3.6 on NetWare 5.0+SP6a. A month ago I have migrated
wire my BM services to new machine with NetWare 6. I applied SP3 for
NetWare and made in-place upgrade on BorderManager to version 3.7 and
applied SP2 for BM. Nothing was changed with the configuration. With
previous verion of NetWare and BM I had VPN connection site-to site
my company's branch office and also client-to-site for users who needs
connect the notwork via modems.
Everything worked fine untill upgrade BM. I tried to workaround this
I removed all prev...BM 3.6 + VPN Client 3.7 + NAT + private ipaddress
i've a new vodaphone D2 PCMCIA Data Connect Card ( Germany ) to dial
Internet over VPN-Client to my BM server. It work, but i cannot ping
in my private network. Over the provider i became also private
( 10.x.x.x ), so this addresses could not route over the BM !!! Had
an idea, if it is possible to route private ip addresses in VPN-Client
private ip addresses to bm ? Or, is it possible to give the vpn-client
second ipaddress from my private network ? How is the way to configure
bm + vpn client to get it to work ??? Or is t...VPN clientc can ping internal hosts, but can't ping private address of the BM VPN server.
VPN client connects just fine, I can ping and login to my internal
servers both by address and by name etc. - all is great, but I can't
ping and can't login/map drives to the BM server itself. Ping to
10.0.0.2 (private interface of the BM VPN server) fails. If I try to map
to 10.0.0.2\sys: I get the error code 8884...
BM 3.8 SP2a Server with 2 interfaces:
Public: 81.x.x.242 with dynamic NAT and no secondary IP addresses.
(NCP Include IP Addresses = 10.0.0.2 set on the server)
The rest of the private network is using different subnet...BM 3.6 VPN-Einwahl
habe das Problem das ich nach erfolgreicher VPN-Einwahl auf keinerlei
Ressource der Gegenstelle zugreifen kann.
Auch ein Ping ist nicht m�glich. Hier die Fakten:
NW51. inkl. SP7 + BM3.6 inkl. SP2A
Internet-Einwahl �ber Netgear RT311-Router mit dynamischer IP-Adresse.
Aufl�sung �ber dyndns.org und Port-Forwarding Port 353 (f�r VPN-Einwahl).
Die VPN-Einwahl selbst klappt (Test �ber WinXP + VPN-Client 3.7 +
ISDN-Internet Connection) aber ich kann kein Ger�t auf der lokalen Seite des
BM anpingen. Auch nicht die Router IP-Adressen oder BM-IP-Adressen. Die
Aktivit�tsanzeige im N...Small VPN appliance to connect to BM VPN
Content-Type: text/plain; charset=iso-8859-15
Content-Disposition: inline; modification-date="Sat, 30 Mar 2007 18:09:36
Can anybody recommend a small (inexpensive) router that could easily =
create a VPN from it to a BM 3.8 server? We have a remote location =
(warehouse) that will have 2 computers. I was going to set up the =
workstations to connect to a Terminal server in the main office to run the =
applications they require. The problem I am attempting to deal with is =
that the use...Cisco VPN or BM VPN open question..
I have a customer, they have a small Netware deployment (100 Users), and
like the Novell Technologies.
They are now looking to provide their own internet access (currently hosted)
Therefore they are going to need a Proxy server and a VPN server.
Cisco salesman has been in and told them the best option is to use a
Cisco VPN (I guess this only does VPN and not Proxy but I am not sure of
Was just wondering if anyone had any views, whether to use CISCO vpn or BM.
So far I can think of...
1) I think that BM will be cheaper?
2) They have a Netwar...BM 3.5 to BM 3.8 w/VPN
Bordermanager 3.5 server on Netware 5.1 providing firewall and proxy
services for users on internal network. This box is also acting as the
Master VPN server with multiple site-to-site VPN links to BM 3.5 slave
Replace the existing Bordermanager 3.5 master VPN server hardware with a
new server running Bordermanager 3.8 on Netware 6.0. It is possible to
have both servers online during migration. Must minimize disruption to
firewall, proxy & VPN services.
No changes (or minimial changes only) to the slave servers running BM
3.5. (T...Craig's Tip #77 (3.8 Site-Site VPN slave server that won't start VPN services)
I have a couple of questions:
Does this problem happen in IKE mode, Legacy mode, or both ?
If there's a replica of root on another server on the slave's segment, I
assume this is enough of a 'fix' to allow the services to start properly?
"Update: Aug 24, 2004: I am hearing that there is a design bug with
BorderManager 3.8 Site-to-Site VPN that requires the slave server to contact
a replica of the Root partition in order to launch. This means (for now)
that you need to put a replica of Root on the VPN slave server. This makes
se...outbound vpn thru bm 3.7
are are running a fresh install of bordermanager 3.7, sp1. we are trying
to establish an outbound VPN connection from one of our LAN clients to a
VPN over the internet using windows built in VPN. we created the
appropriate rules but are unable to connect. we get passed the login
screen, to where it says 'verifying username and password' but no luck.
dropping the filters doesnt help; so we are wondering if it is a NAT issue
or some other setting in BM. if we sit on the public side of BM, we are
able to connect. once we get on the privat side, nada.