I've got a VPN 3005 Concentrator. It is set up to fetch DHCP addresses from a Win2k DHCP server. When a remote client connects, it grabs a DHCP address and subnet mask. The problem is that it does not get the proper default gateway or the DNS servers. It always sets the DHCP address as the defautl gateway. How do I get it to send the proper default gateway and DNS info? The DHCP server sends the info just fine except through the VPN.
The 3005 will accept IP addresses from a DHCP server to assign to clients, it ignores any other DHCP parameter it receives from the DHCP server.
To set the DNS servers for the VPN client, you define these under the group settings under the General tab.
The Default Gateway will always just be set to the assigned IP address as once the tunnel is established the PC internally sends everything to the VPN client IP which then forwards it over the tunnel. This is similar to if you dialup to an ISP using a PPP connection, you'll notice your DG is always the same as your negotiated IP address.
If you do want to send all your tunnelled traffic through to a specific internal router/gw, then you can have the 3005 do this by setting the "Tunnel Default Gateway" parameter under Config - System - IP Routing - Default Gateways. You won't see this parameter appear on the client, but the 3005 will send all traffic it receives from clients to this address automatically.
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin...
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...