Trouble with Site to Site RouterMode >> BridgeMode UT

[dearzameer@gmail.com]

Hi,
NOT ABLE TO CONNECT FROM CLIENT NETWORK TO SERVER NETWORK...
Server Side Network to Client Side works fine.........
Network Diagram as follows :
__________________________________________________ ______
SERVER NETWORK (192.168.100.0/24)
===> [ UT ROUTER MODE ]
!!
!!
Internet Cloud
!!
!!
V
[ Client Router ]192.168.1.1 GW
!!
!!
V
[UT Bridge Mode ]
192.168.1.100
!!
!!
V
Client IP 192.168.1.4 GW 192.168.1.1 Subnet 255.255.255.0
__________________________________________________ ________

As per gotkimchi's instruction I have enable the system packet filter rule and added a static route in Router
{ ip route 192.168.100.0 255.255.255.0 192.168.1.100 }
I can ping from Bridge UT to Server UT and Network but failed to ping from client PC.
Out put of tracert from client PC goes upto bridge UT only.
I have also checked with adding Static Route in Client PC but no success.

Please help me in this matter.....

Thanks a lot.

[jcoffin]

Common problem with UT in bridge mode is for the ethernet ports connected in reverse. Check the internal ethernet is on the client PC side by physically disconnecting the wire from the UT and verifying the network interface GUI shows the internal as disconnected.

[dearzameer@gmail.com]

Well Thanks for post, I ll check it and let you know........

[dearzameer@gmail.com]

Hi,
After swapping Network cable I lost the console of UT, that means earlier connection was right. I have also check with rebooting UT after interchange.
Currently I am able to ping all server side PCs from Client side [Bridge UT].
I have also removed the Firewall Module from Both the UT.

Please have a look attached file.............

[WebFooL]

Hi,
have you rebooted the untangle servers after the site to site was establish?
Have you done all steps in the step by step instructions?
http://forums.untangle.com/openvpn/8...tructions.html

[dearzameer@gmail.com]

Hi,
Yes I did the same.....
Even both the UTs I have rebooted.....

I can access each and every thing from Server side to Client side but not from client side.........
I have checked with new spool address also.... but not works..............

[dearzameer@gmail.com]

Can we check logs exactly where packets getting dropped ?

Attached image showing none of packets passing through Bridge UT.
Even I have added static route on client PC it self..........

Am I right?

[WebFooL]

If you do a tracert from a unit on the client side and then see that it is routed to the untangle then that part is ok..

Try add a Firewall Rule in Untangle for the VPN interface.

Enable Rule: YES
Description: VPN ACCESS
Action: PASS
Log: Up TO YOU
Rule
Traffic Type: TCP & UDP
Source Interface: VPN
Destination Interface: Internal
Source Address:ANY
Destination Address:ANY
Source Port:ANY
Destination Port:ANY

[dearzameer@gmail.com]

Yes please find Tracert output, Its routed up to UT only.
and Firewall module I have removed from both the UTs....

Is there any chance of Blocking Packets in any Side UT?
My other Roadwarriors Client working fine with same Router Mode UT at Server Side.

Firewall Module currently required?
I can do it after successfully connection.............

[WebFooL]

The tracert should go in to the VPN address pool (172.16.0.2) after it hits the internal interface of untangle.
If you tracert from the Untangle Client server (from the terminal) to the server network what is the output?