advanced routing (Network Access)

Hi folks,

 

 

I made a Network Access policy and included it a lease pool for a vpn service, all clients are working like a charm with this public service, they receive a IP in a lease pool range (192.168.0.1 - 192.168.0.254) and they are connecting to our private network with their own ip (no snat).

 

 

But now my problem. We tried to ping vpn clients without success and also we need to connect to a TCP port in the vpn client . I would like to know if the community could help me indicating how I can add a advanced routing to redirect INPUT connections in the F5 with destination my vpn range. A tcpdump shows connections to the vpn range but F5 doesn't know what to do with theirs.

 

 

A ifconfig output shows the network interface is made in the F5 appliance

 

 

ifconfig

 

 

policy_vpn Link encap:Ethernet HWaddr 00:00:00:00:00:00

 

inet6 addr: fe80::200:ff:fe00:0/64 Scope:Link

 

UP POINTOPOINT RUNNING NOARP MTU:1500 Metric:1

 

RX packets:0 errors:0 dropped:0 overruns:0 frame:0

 

TX packets:0 errors:0 dropped:0 overruns:0 carrier:0

 

collisions:0 txqueuelen:0

 

RX bytes:0 (0.0 b) TX bytes:0 (0.0 b)

 

 

(more interfaces)

 

 

policy_vpn is the network access which I added the lease pool and is used by the virtual service that external clients use to connect to our vpn service

 

 

Some information about this issue is welcomed.

 

 

Thanks