I have a VPN question for someone please

I have a RRAS server on an SBS 2003 box and it works well for Windows
clients. I thought I would try and get smart and install a WIndows XP Pro
workstation with two Network cards and enable routing on the workstation.
the intention was for this to be a router, It would get a VPN connection with
the server across the internet, and the clients would not have to
individually make there connections to the VPN server. Sort of a Site to
Site VPN, but one side is 2003, and the other is XP. I can get the PC making
the connection to work on the VPN, but as soon as I ask any clients in the
Internal NIC of the XP pro PC to use ping though the router we get no reply.

RRAS server 192.168.50.1/GW 192.168.50.254
Router 192.168.50.254/204.x.x.x

Windows XP NIC1/Internal 192.168.10.1/GW 192.168.11.1
Windows XP NIC2/External 192.168.11.1/GW 192.168.11.254
Router 192.168.11.254/158.x.x.x

Clients 192.168.10.10-20/GW 192.168.10.1
I hope this explains what I am tring to do. basically i want to stop the
PC's using Software and isntall a small XP Pro Workstation which will
actually create the VPN and use XP as the router. Like I said above I can
surf and use DNS on the network from 192.168.10.1 the PC that creates the
VPN, but when I try it on the clients 192.168.10.20-30 I get nothing.
Any ideas, or cna this not be done.

"CLarke" <(E-Mail Removed)> wrote in message
news:2489BD8F-F8F3-470F-8A17-(E-Mail Removed)...
> I have a RRAS server on an SBS 2003 box and it works well for Windows
> clients. I thought I would try and get smart and install a WIndows XP Pro
> workstation with two Network cards and enable routing on the workstation.
> the intention was for this to be a router, It would get a VPN connection
> with
> the server across the internet, and the clients would not have to
> individually make there connections to the VPN server. Sort of a Site to
> Site VPN, but one side is 2003, and the other is XP. I can get the PC
> making
> the connection to work on the VPN, but as soon as I ask any clients in the
> Internal NIC of the XP pro PC to use ping though the router we get no
> reply.
>
> RRAS server 192.168.50.1/GW 192.168.50.254
> Router 192.168.50.254/204.x.x.x
>
> Windows XP NIC1/Internal 192.168.10.1/GW 192.168.11.1
> Windows XP NIC2/External 192.168.11.1/GW 192.168.11.254
> Router 192.168.11.254/158.x.x.x
>
> Clients 192.168.10.10-20/GW 192.168.10.1
> I hope this explains what I am tring to do. basically i want to stop the
> PC's using Software and isntall a small XP Pro Workstation which will
> actually create the VPN and use XP as the router. Like I said above I can
> surf and use DNS on the network from 192.168.10.1 the PC that creates the
> VPN, but when I try it on the clients 192.168.10.20-30 I get nothing.
> Any ideas, or cna this not be done.


Routing is a two way process. Getting traffic from one site to the other
is not sufficient. You also need routes to get the replies back again.

Site to site routing works, but it is not as simple as that. You really
need a server/router at each end. With a RRAS server at each end you can
link the static routes needed to route between subnets to demand-dial
interfaces, and then connect using these demand-dial interfaces as
connection points. There is really no way to do it with XP. You can route
traffic to the XP machine, but not to the subnet behind it.

CLarke <(E-Mail Removed)> wrote:
> I have a RRAS server on an SBS 2003 box and it works well for Windows
> clients. I thought I would try and get smart and install a WIndows
> XP Pro workstation with two Network cards and enable routing on the
> workstation. the intention was for this to be a router, It would get
> a VPN connection with the server across the internet, and the clients
> would not have to individually make there connections to the VPN
> server. Sort of a Site to Site VPN, but one side is 2003, and the
> other is XP. I can get the PC making the connection to work on the
> VPN, but as soon as I ask any clients in the Internal NIC of the XP
> pro PC to use ping though the router we get no reply.
>
> RRAS server 192.168.50.1/GW 192.168.50.254
> Router 192.168.50.254/204.x.x.x
>
> Windows XP NIC1/Internal 192.168.10.1/GW 192.168.11.1
> Windows XP NIC2/External 192.168.11.1/GW 192.168.11.254
> Router 192.168.11.254/158.x.x.x
>
> Clients 192.168.10.10-20/GW 192.168.10.1
> I hope this explains what I am tring to do. basically i want to stop
> the PC's using Software and isntall a small XP Pro Workstation which
> will actually create the VPN and use XP as the router. Like I said
> above I can surf and use DNS on the network from 192.168.10.1 the PC
> that creates the VPN, but when I try it on the clients
> 192.168.10.20-30 I get nothing.
> Any ideas, or cna this not be done.

In addition to Bill's reply, note that SBS is a tightly integrated suite and
does many things its own way. You should post in
microsoft.public.windows.server.sbs for more expert help.