Did you read any of the "How to" articles on setting up LAN to LAN VPNs?
Here are the basic essentials.
1. You need demand dial interfaces on both RRAS routers.
2. You need static routes linked to these demand-dial interfaces.
3. The calling router must use the name of the demand-dial interface on the
answering router as its username (so that the connection binds to the demand
dial interface).
When the demand-dial interfaces bind to the connection, the static routes
which are linked to them become active. Each router then has a route for the
"other" site's subnet through the VPN. If the RRAS router is the default
gateway for each LAN, you can then route between subnets.
"Adek" <(E-Mail Removed)> wrote in message
news:(E-Mail Removed) oups.com...
> Scenario:
>
> LAN1:
> - Class 192.168.0.0 / 255.255.255.0
> - Windows 2003 Server Standard with RRAS (ip 192.168.0.204), let's say
> SERV1
> - some XP Clients
> - Some additional hardware router that does NAT to public network (ip
> 192.168.0.100)
>
> LAN2:
> - Some public class
> - Private class 192.168.1.0 / 255.255.255.0
> - Windows 2003 Web Edition with RRAS installed as VPN Server, let's say
> SERV2
>
>
> I've configured VPN server on LAN2 and it accepts VPN connections. When
> I connect to SERV2 from my XP Professional machine in LAN1, I can get
> access to all the machines in LAN2. But i want to gain this access to
> all other machines in LAN1.
>
> So I've installed RRAS on SERV1, configured "on demand dial out" to
> SERV2. When I ping from SERV1 to any private ip in LAN2, connection is
> being estabilished and i have access to remote LAN2.
>
>
> Now I want to give that access to all my clients. So on the client
> machine i've added static route:
> "route add -p 192.168.1.0 mask 255.255.255.0 192.168.0.204"
>
> but it din't helped. I turned on ip forwarding on SERV1 but it still
> doesnt help.
>
>
> When I ping LAN2 from SERV1 connection is estabilished and i can access
> all servers in LAN2 from SERV1.
>
> When I ping LAN2 (or SERV2) from client in LAN1, connections is
> estabilished but i've no access from that client "ping request time
> out".
>
> After connection is estabilished SERV1 gets ip 192.168.1.211, and SERV2
> 192.168.1.210. From SERV1 i can ping any host in 192.168.1.xx but from
> SERV2 i can't ping anything in 192.168.0.xx.
>
>
> Can anyone explain me, how to create VPN connections between two LAN's
> ? Please write me what i did wrong, or maybe give some tutorial how set
> up routes.
>
> I would like to configure my LAN1 to use SERV1 to estabilish VPN
> connection to SERV2, so all clients in LAN1 can get secure access to
> resources in LAN2.
>
|
Similar Threads
Linear Mode
