Let me explain the scenario to the above subject.
We're using Shrewsoft VPN Client to terminate a VPN on our NetscreenOS SSG-550.
This is working correctly, we can access all resources within our LAN (Trust VR).
We can't however establish a connection the other way.
the VPN works like this;
PC -VPN-SSG(interface in VR-3) | Policy rules | LAN (VR-Trust)
----------------------------------------------------------------------------------->
This works perfectly fine.
We can't however work this way;
PC -VPN-SSG(interface in VR-3) | Policy rules | LAN (VR-Trust)
<-----------------------------------------------------------------------------------
We can't ping the client from within our LAN as a basic test.
we have a route in place in the VR-Trust to send traffic to the VPN IP Pool. This simply sends the traffic to VR-3. (where as above the VPN terminates.)
I assume the issue is that when it gets there it doesnt know what to do with it. I'm not sure where to direct the traffic when it does get there?
Should this be doable? Obviously the VPN does not have a gateway, so is this the normal behaviour?