 |
| Register | FAQ | Members List | Calendar | Links | Search | Today's Posts | Mark Forums Read |
|
||||||||
|
|
#1
11-16-2006, 12:50 AM
|
RAS and Static Routes
A remote office uses its vpn router to open a PPTP session with a Windows
2003 RAS host in the home office. The vpn router has a static route table pointing the remote office LAN (192.168.10.0) to the home office LAN (192.168.100.0) The RAS host is configured as a remote access server only. Users on the remote office LAN have access to network resources in the home office. Is it possible to configure the RAS host so that users on the home office LAN may access resources on the remote office LAN over this same PPTP connection? Thanks! Dan Moseley Daniel Moseley 
|
|
#2
11-16-2006, 01:58 AM
|
|||
|
|||
|
Re: RAS and Static Routes
Yes. You need to configure the RRAS server at the home office to accept a
router to router connection (sometimes called LAN to LAN or site to site). This involves configuring a demand-dial interface to act as the endpoint of the VPN and setting up a static route for the remote office subnet linked to this demand-dial interface. The calling router then uses the name of the demand-dial interface (on the answering router) as its username when it connects. The connection is made to the dd interface and the static route is added to the routing table. The "answering" router now has a subnet route for the remote office through the VPN connection. (If you do not use the name of a demand-dial interface as the username, you connect to the default interface and the static route is not activated. You only get a host route back to the calling machine itself. This how RRAS is able to handle multiple remote sites as well as normal client-server VPN connections). If the router at the remote site is also RRAS you can configure it the same way to give more flexibility. (You then have the standard RRAS router to router config which can be initiated from either end). "Daniel Moseley" <(E-Mail Removed)> wrote in message news:31E26673-C75C-4632-8100-(E-Mail Removed)... >A remote office uses its vpn router to open a PPTP session with a Windows > 2003 RAS host in the home office. The vpn router has a static route table > pointing the remote office LAN (192.168.10.0) to the home office LAN > (192.168.100.0) The RAS host is configured as a remote access server only. > Users on the remote office LAN have access to network resources in the > home > office. Is it possible to configure the RAS host so that users on the > home > office LAN may access resources on the remote office LAN over this same > PPTP > connection? > > Thanks! > > Dan Moseley
|
|
#3
11-16-2006, 03:24 PM
|
|||
|
|||
|
Re: RAS and Static Routes
Thanks, Bill. I will set this up over the weekend and let you know the
results. Dan Moseley "Bill Grant" wrote: > Yes. You need to configure the RRAS server at the home office to accept a > router to router connection (sometimes called LAN to LAN or site to site). > This involves configuring a demand-dial interface to act as the endpoint of > the VPN and setting up a static route for the remote office subnet linked to > this demand-dial interface. > > The calling router then uses the name of the demand-dial interface (on > the answering router) as its username when it connects. The connection is > made to the dd interface and the static route is added to the routing table. > The "answering" router now has a subnet route for the remote office through > the VPN connection. (If you do not use the name of a demand-dial interface > as the username, you connect to the default interface and the static route > is not activated. You only get a host route back to the calling machine > itself. This how RRAS is able to handle multiple remote sites as well as > normal client-server VPN connections). > > If the router at the remote site is also RRAS you can configure it the > same way to give more flexibility. (You then have the standard RRAS router > to router config which can be initiated from either end). > > "Daniel Moseley" <(E-Mail Removed)> wrote in message > news:31E26673-C75C-4632-8100-(E-Mail Removed)... > >A remote office uses its vpn router to open a PPTP session with a Windows > > 2003 RAS host in the home office. The vpn router has a static route table > > pointing the remote office LAN (192.168.10.0) to the home office LAN > > (192.168.100.0) The RAS host is configured as a remote access server only. > > Users on the remote office LAN have access to network resources in the > > home > > office. Is it possible to configure the RAS host so that users on the > > home > > office LAN may access resources on the remote office LAN over this same > > PPTP > > connection? > > > > Thanks! > > > > Dan Moseley > > >
|
|
#4
11-21-2006, 07:13 AM
|
|||
|
|||
|
Re: RAS and Static Routes
Bill --
I could not get this approach to work. The home office never was able to ping the remote lan. I decided to set up an IPSec / IKE router-to-router vpn, bypassing the RAS machine entirely. This works and is more secure than PPTP anyhow. Thanks anyway. Dan "Bill Grant" wrote: > Yes. You need to configure the RRAS server at the home office to accept a > router to router connection (sometimes called LAN to LAN or site to site). > This involves configuring a demand-dial interface to act as the endpoint of > the VPN and setting up a static route for the remote office subnet linked to > this demand-dial interface. > > The calling router then uses the name of the demand-dial interface (on > the answering router) as its username when it connects. The connection is > made to the dd interface and the static route is added to the routing table. > The "answering" router now has a subnet route for the remote office through > the VPN connection. (If you do not use the name of a demand-dial interface > as the username, you connect to the default interface and the static route > is not activated. You only get a host route back to the calling machine > itself. This how RRAS is able to handle multiple remote sites as well as > normal client-server VPN connections). > > If the router at the remote site is also RRAS you can configure it the > same way to give more flexibility. (You then have the standard RRAS router > to router config which can be initiated from either end). > > "Daniel Moseley" <(E-Mail Removed)> wrote in message > news:31E26673-C75C-4632-8100-(E-Mail Removed)... > >A remote office uses its vpn router to open a PPTP session with a Windows > > 2003 RAS host in the home office. The vpn router has a static route table > > pointing the remote office LAN (192.168.10.0) to the home office LAN > > (192.168.100.0) The RAS host is configured as a remote access server only. > > Users on the remote office LAN have access to network resources in the > > home > > office. Is it possible to configure the RAS host so that users on the > > home > > office LAN may access resources on the remote office LAN over this same > > PPTP > > connection? > > > > Thanks! > > > > Dan Moseley > > >
|
 |
| Tags |
| ras, routes, static |
| Thread Tools | |
| Display Modes | |
|
|
Linear Mode
