I need help configuring rules to allow my Windows 2016 VPN server to be able to be accessed on my LAN. Outside users can access via PPTP or L2TP just fine, The VPN server is on OPT1 interface and the local subnet is on LAN.
All the required ports are open for VPN PPTP and L2TP access. I just cannot get any local computers to connect.
The VPN server IP is 192.168.1.101 and I would like to connect to LAN 192.168.100.0/24
The OPT1 interface is 192.168.1.0/24.
I see no hits in the live logs to help me figure it out and I tried floating rules, OPT1 rules, and LAN rules to open the path between these IP's with no luck and I have NAT Reflection enabled. Maybe a NAT Reflection problem?
I am probably just missing something. It's been a while since I needed to change rules.
Attached is an example of an OPT1 rule I tried with no success.
Any help would be appreciated?
You don't happen to have any outbound NAT policies that are possibly changing the IP address of the VPN server to a public IP do you?
Edit: Actually looking closer you have a rule to allow your LAN to talk to the server, but do you have a rule on OPT1 to allow your server to talk to the LAN?
adding the rule to OPT1 didn't help. See attached
I still get no hits in the log. I have both rules set to log events.
No one...
I figured this is easy for the firewall masters out there.