Networking Forums  

Go Back   Networking Forums > Networking Newsgroups > Windows Server Networking
Reload this Page VPN/RAS Access other network resources

VPN/RAS Access other network resources

Reply
 
Thread Tools Display Modes
  #1  
Old 12-12-2005, 09:49 PM
Default VPN/RAS Access other network resources


I have set network for VPN and RAS. At the moment I can access the resources
on the w2003 server with VPN/RAS but I cannot access any of the other
computers on the LAN.

VPN clients go through my Netgear ADSL Modem Firewall Router which forwards
VPN traffic to a W2003 server configured for VPN/RAS. The router acts as as a
DHCP server for the LAN but VPN clients are issued IP addressess by the VPN
server from a static pool.

I have played about with variations of this configuration without success. I
did not quite understand the bit about static routes.

What do I need to do to allow VPN clients access to other computers on the
LAN?

Please help.


Gerry
Reply With Quote
  #2  
Old 12-13-2005, 02:15 AM
Robert L [MS-MVP]
Guest
  
Posts: n/a
Default Re: VPN/RAS Access other network resources
assuming you can't ping other remote computer by IPs, posting the results of both vpn client and server ipconfig /all here may help.

Bob Lin, MS-MVP, MCSE & CNE
Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
"Gerry" <(E-Mail Removed)> wrote in message news:8EAD186A-025F-4827-9468-(E-Mail Removed)...
I have set network for VPN and RAS. At the moment I can access the resources
on the w2003 server with VPN/RAS but I cannot access any of the other
computers on the LAN.

VPN clients go through my Netgear ADSL Modem Firewall Router which forwards
VPN traffic to a W2003 server configured for VPN/RAS. The router acts as as a
DHCP server for the LAN but VPN clients are issued IP addressess by the VPN
server from a static pool.

I have played about with variations of this configuration without success. I
did not quite understand the bit about static routes.

What do I need to do to allow VPN clients access to other computers on the
LAN?

Please help.
Reply With Quote
  #3  
Old 12-13-2005, 09:42 PM
Gerry
Guest
  
Posts: n/a
Default Re: VPN/RAS Access other network resources
Thanks Robert for your reply.

The settings for the client are as follows:


PPP adapter ee:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : WAN (PPP/SLIP) Interface
Physical Address. . . . . . . . . : 00-53-45-00-00-00
Dhcp Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.0.109
Subnet Mask . . . . . . . . . . . : 255.255.255.255
Default Gateway . . . . . . . . . : 192.168.0.109
DNS Servers . . . . . . . . . . . : 192.168.0.1
192.168.0.1

192.168.0.1 is my ADSL Modem Router Firewall. I do not see why the default
gateway should be 192.168.0.109.


The settings on the server are as follows:
Windows IP Configuration
Host Name . . . . . . . . . . . . : w2003server
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : Yes
WINS Proxy Enabled. . . . . . . . : Yes
PPP adapter RAS Server (Dial In) Interface:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : WAN (PPP/SLIP) Interface
Physical Address. . . . . . . . . : 00-53-45-00-00-00
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.0.100
Subnet Mask . . . . . . . . . . . : 255.255.255.255
Default Gateway . . . . . . . . . :
Ethernet adapter Local Area Connection 2:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : NETGEAR FA311/312 PCI Adapter
Physical Address. . . . . . . . . : 00-02-E3-0B-03-F9
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IP Address. . . . . . . . . . . . : 192.168.0.4
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DNS Servers . . . . . . . . . . . : 192.168.0.1
Lease Obtained. . . . . . . . . . : 12 December 2005 07:40:16
Lease Expires . . . . . . . . . . : 15 December 2005 07:40:16

Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek RTL8139 Family PCI Fast
Ethernet NIC
Physical Address. . . . . . . . . : 00-C0-49-DC-AC-AE
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IP Address. . . . . . . . . . . . : 192.168.0.3
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DNS Servers . . . . . . . . . . . : 192.168.0.1
Lease Obtained. . . . . . . . . . : 12 December 2005 07:40:16
Lease Expires . . . . . . . . . . : 15 December 2005 07:40:16


The settings on the router are as follows:
LAN IP Setup
LAN TCP/IP Setup
IP Address 192.168.0.1
IP Subnet Mask 255.2255.255.0
RIP Direction Both
RIP Version RIP-1
Use Router as DHCP Server
Starting IP Address 192.168.0.1
Ending IP Address 192.168.0.99
Address Reservation
# IP Address Device Name MAC Address
1 192.168.0.3 W2003SERVER 00:C0:49C:AC:AE
2 192.168.0.4 VPNCARD 00:02:E3:0B:03:F9
3 192.168.0.2 XPSERVER 00:0C:F1:FB8:BB



Thanks for your help

Gerald




"Robert L [MS-MVP]" wrote:

> assuming you can't ping other remote computer by IPs, posting the results of both vpn client and server ipconfig /all here may help.
>
> Bob Lin, MS-MVP, MCSE & CNE
> Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
> How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
> "Gerry" <(E-Mail Removed)> wrote in message news:8EAD186A-025F-4827-9468-(E-Mail Removed)...
> I have set network for VPN and RAS. At the moment I can access the resources
> on the w2003 server with VPN/RAS but I cannot access any of the other
> computers on the LAN.
>
> VPN clients go through my Netgear ADSL Modem Firewall Router which forwards
> VPN traffic to a W2003 server configured for VPN/RAS. The router acts as as a
> DHCP server for the LAN but VPN clients are issued IP addressess by the VPN
> server from a static pool.
>
> I have played about with variations of this configuration without success. I
> did not quite understand the bit about static routes.
>
> What do I need to do to allow VPN clients access to other computers on the
> LAN?
>
> Please help
Reply With Quote
  #4  
Old 12-14-2005, 12:07 AM
Bill Grant
Guest
  
Posts: n/a
Default Re: VPN/RAS Access other network resources
The default gateway is set to the "received" IP address because that is
how RAS/VPN works by default. All non-local traffic will be sent to
192.168.0.109 , which is the address of the point-to-point link between
client and server. What that really means is that the default routing for
your client is to the VPN server (which is at the other end of the point to
point link).

What worries me is that you receive a 192.168.0.x address from the VPN
server. Is the remote site also using 192.168.0.0/24 ? If it is, that
explains your problem. For routing to work, the two sites need to be in
different IP subnets. Your client will not send traffic for a 192.168.0.x
across the VPN link, because it is a local address. It will try to deliver
it on your local LAN.

Gerry wrote:
> Thanks Robert for your reply.
>
> The settings for the client are as follows:
>
>
> PPP adapter ee:
> Connection-specific DNS Suffix . :
> Description . . . . . . . . . . . : WAN (PPP/SLIP) Interface
> Physical Address. . . . . . . . . : 00-53-45-00-00-00
> Dhcp Enabled. . . . . . . . . . . : No
> IP Address. . . . . . . . . . . . : 192.168.0.109
> Subnet Mask . . . . . . . . . . . : 255.255.255.255
> Default Gateway . . . . . . . . . : 192.168.0.109
> DNS Servers . . . . . . . . . . . : 192.168.0.1
> 192.168.0.1
>
> 192.168.0.1 is my ADSL Modem Router Firewall. I do not see why the
> default gateway should be 192.168.0.109.
>
>
> The settings on the server are as follows:
> Windows IP Configuration
> Host Name . . . . . . . . . . . . : w2003server
> Primary Dns Suffix . . . . . . . :
> Node Type . . . . . . . . . . . . : Unknown
> IP Routing Enabled. . . . . . . . : Yes
> WINS Proxy Enabled. . . . . . . . : Yes
> PPP adapter RAS Server (Dial In) Interface:
> Connection-specific DNS Suffix . :
> Description . . . . . . . . . . . : WAN (PPP/SLIP) Interface
> Physical Address. . . . . . . . . : 00-53-45-00-00-00
> DHCP Enabled. . . . . . . . . . . : No
> IP Address. . . . . . . . . . . . : 192.168.0.100
> Subnet Mask . . . . . . . . . . . : 255.255.255.255
> Default Gateway . . . . . . . . . :
> Ethernet adapter Local Area Connection 2:
> Connection-specific DNS Suffix . :
> Description . . . . . . . . . . . : NETGEAR FA311/312 PCI Adapter
> Physical Address. . . . . . . . . : 00-02-E3-0B-03-F9
> DHCP Enabled. . . . . . . . . . . : Yes
> Autoconfiguration Enabled . . . . : Yes
> IP Address. . . . . . . . . . . . : 192.168.0.4
> Subnet Mask . . . . . . . . . . . : 255.255.255.0
> Default Gateway . . . . . . . . . : 192.168.0.1
> DHCP Server . . . . . . . . . . . : 192.168.0.1
> DNS Servers . . . . . . . . . . . : 192.168.0.1
> Lease Obtained. . . . . . . . . . : 12 December 2005 07:40:16
> Lease Expires . . . . . . . . . . : 15 December 2005 07:40:16
>
> Ethernet adapter Local Area Connection:
> Connection-specific DNS Suffix . :
> Description . . . . . . . . . . . : Realtek RTL8139 Family PCI Fast
> Ethernet NIC
> Physical Address. . . . . . . . . : 00-C0-49-DC-AC-AE
> DHCP Enabled. . . . . . . . . . . : Yes
> Autoconfiguration Enabled . . . . : Yes
> IP Address. . . . . . . . . . . . : 192.168.0.3
> Subnet Mask . . . . . . . . . . . : 255.255.255.0
> Default Gateway . . . . . . . . . : 192.168.0.1
> DHCP Server . . . . . . . . . . . : 192.168.0.1
> DNS Servers . . . . . . . . . . . : 192.168.0.1
> Lease Obtained. . . . . . . . . . : 12 December 2005 07:40:16
> Lease Expires . . . . . . . . . . : 15 December 2005 07:40:16
>
>
> The settings on the router are as follows:
> LAN IP Setup
> LAN TCP/IP Setup
> IP Address 192.168.0.1
> IP Subnet Mask 255.2255.255.0
> RIP Direction Both
> RIP Version RIP-1
> Use Router as DHCP Server
> Starting IP Address 192.168.0.1
> Ending IP Address 192.168.0.99
> Address Reservation
> # IP Address Device Name MAC Address
> 1 192.168.0.3 W2003SERVER 00:C0:49C:AC:AE
> 2 192.168.0.4 VPNCARD 00:02:E3:0B:03:F9
> 3 192.168.0.2 XPSERVER 00:0C:F1:FB8:BB
>
>
>
> Thanks for your help
>
> Gerald
>
>
>
>
> "Robert L [MS-MVP]" wrote:
>
>> assuming you can't ping other remote computer by IPs, posting the
>> results of both vpn client and server ipconfig /all here may help.
>>
>> Bob Lin, MS-MVP, MCSE & CNE
>> Networking, Internet, Routing, VPN Troubleshooting on
>> http://www.ChicagoTech.net
>> How to Setup Windows, Network, VPN & Remote Access on
>> http://www.HowToNetworking.com "Gerry"
>> <(E-Mail Removed)> wrote in message
>> news:8EAD186A-025F-4827-9468-(E-Mail Removed)... I have
>> set network for VPN and RAS. At the moment I can access the
>> resources on the w2003 server with VPN/RAS but I cannot access any
>> of the other computers on the LAN.
>>
>> VPN clients go through my Netgear ADSL Modem Firewall Router which
>> forwards VPN traffic to a W2003 server configured for VPN/RAS. The
>> router acts as as a DHCP server for the LAN but VPN clients are
>> issued IP addressess by the VPN server from a static pool.
>>
>> I have played about with variations of this configuration without
>> success. I did not quite understand the bit about static routes.
>>
>> What do I need to do to allow VPN clients access to other
>> computers on the LAN?
>>
>> Please help


Reply With Quote
Reply

Tags
access, network, resources, vpn or ras

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT. The time now is 12:15 PM.

Contact Us - Archive - Top

Powered by vBulletin® Version 3.7.3
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.