BM38 with 3 nic's, private, public, dmz
I'm using C2S VPN (certificate based) and that works fine from the Public
interface to hosts on the private lan.
I cannot connect to hosts in the DMZ.

The client policies look like this after establishing the connection:
Protected networks:
10.x.x.x Encrypt (private)
192.168.x.x (dmz)
Any -> No encryprion
Any -> Deny packets.

The hosts in the dmz lan have default gateway to the dmz-address of BM of

When I do a unload IPFLT I can ping to the dmz hosts from a VPN client.
So I think it had to do with filtering.
Is it possible to get this work and what filter exceptions are required?

Bert van Nes.