We have a TZ-210 firewall and recently added a SRA 4600 to our setup to get the SSLVPN off the firewall. I put the SRA on the DMZ of our firewall (existing network) and setup the NetExtender range to be different than our DMZ range. I then put a route into our firewall for this new range and everything works great except NetExtender clients cannot reach any other DMZ network servers. I can reach the SRA itself, the firewalls DMZ ip address, the LAN, etc. but no other DMZ machines are reachable.
I am fairly certain I have everything setup properly and according to your documentation, this is a supported setup if you are out of DMZ ip's to hand out for NetExtender clients. I need our NetExtender clients to be able to reach these DMZ servers and they cannot.
Any thoughts on why this is happening?