To force client to switch to internal network

Reply
Highlighted
L7 Applicator

Re: To force client to switch to internal network

so do you actually use internal gateways. or are you just adding them for internal host detection

Highlighted
L4 Transporter

Re: To force client to switch to internal network

@MickBall just added it for internal host detection

L7 Applicator

Re: To force client to switch to internal network

you do not need it for internal host detection. remove it.

Highlighted
L4 Transporter

Re: To force client to switch to internal network

@MickBall

The problem is that

In GP application there is an option which says that when the user takes the corporate notebook and go home to connect to home Wi fi and to work he must connect the to GP portal first otherwise you can not get access to anything even Internet from home

When that user comes back to office and connect his Notebook to corporate LAN he get the local network ip address but at the same time tries to connect to GP portal (because of user logon).So it can not connect to outside IP and that is why the user can not get access to anywhere even though it got the local ip address from DHCP

So there must be some mechanism when user connect his laptop to internal lan in the office it must recognize the local network and must connect to other gateway.i guess that must be internal gateway

Highlighted
L7 Applicator

Re: To force client to switch to internal network

Why cant your users connect to the portal (outside ip) when they are connected to the internal lan. Are you blockng it.

Highlighted
L3 Networker

Re: To force client to switch to internal network

Please do verify if you have any routing issues/firewall block with in internal network for connecting to your portal public IP. Access to GP portal will work irrespective of client location (either internal network or from internet) until it is reachable.

 

Highlighted
L4 Transporter

Re: To force client to switch to internal network

@Rajesh12

@MickBall

 

So in order to connect to outside IP i have to configure it as gateway under internal host detection ?

Highlighted
L7 Applicator

Re: To force client to switch to internal network

No, the internal host detection should be something that is on your internal network an resolvable by DNS.

 

so if you have a domain controller called ad.mynet.com and its address is 10.10.10.1 then put it in the internal host detection settings.

 

it does not have to be a server, anything that exists on your lan will suffice.

 

but you need to confirm you can srill see external portal address from lan.

 

can you browse to it from your lan.

 

Highlighted
L4 Transporter

Re: To force client to switch to internal network

@MickBall

Mike i guess we must configure split DNS in order to connect to the same FQDN whether we are inside the LAN or outside

It is not best practice to connect to your outside ip through your gateway device.

In GP there is internal Gateway.I guess the internal gateway is the method by which you can connect to portal through your internal gateway

Highlighted
L7 Applicator

Re: To force client to switch to internal network

When you use internal host detection you do not need to connect to a gateway.

 

you only connect to the portal to get your portal config..

 

when you get your portal configuration from your external address the GP clien does a quick test on the settings you have for internal host detection.

 

if it detects the internal host Then GP client stops trying to connect and you get a little house in your GP icon.

 

so to confirm.... you do not need internal gateways for internal host detection.

 

you do not need split DNS.  What happens when you browse to your external portal address from your lan.

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!

The Live Community thanks you for your participation!