WinGate Forums

[Vyacheslav]

My LAN computers go to Internet through the Wingate 6.
Third company want place VPN-box with attached computer inside our LAN. How can I redirect traffic from Internet to VPN box and from VPN box to Internet?
Thanx.

[Pascal]

How are your client computers connected to WinGate? It should be simply a case of having the VPN box natting out through WinGate.

However, if the initial connection is incoming you might want to setup a port security action to redirect traffic to the VPN box. If that is the case, you might also want to set the "Don't translate source IP" checkbox so the VPN box is aware of the original source.

[Vyacheslav]

Info about VPNbox here
That device use IKE, first. Then all traffic. I suppose.
Not "initial connection is incoming".

How are your client computers connected to WinGate?

IE settings only. no WGIC. I add user. Assume user. Place him to groups.
Groups has rights to WG services.
How i can natting the VPNbox? What kind services i must create? How many. If VPNbox wanna ping something? Only questions.....

[genie]

Well, it's not that easy. DLink uses IPSEC and AH headers which are not NAT-friendly and as such it won't work unless it supports NAT-T extension. Inbound traffic will not be redirected unless initiated by this device from the inside.

However, there is another option. If you know the destination IP address of this connection you can install Wingate VPN on the other end and create a tunnel between two of them. Then it will work fine (redundant, though).

[Vyacheslav]

Create VPN tunnel between my WGServer and thirdside company's Checkpoint Firewall-1? And then what i must do if i can create that VPN?