Win2003 NAT Routing Problem

01-06-2006, 04:18 PM

Community,
I'm trying to setup a Windows 2003 stand alone server as a NAT router to
isolate my lab network away from my corp network. Installed Windows 2003
Standard Server with two NIC Cards. Follwed the Routing and Remote Access
wizard to create a VPN with NAT Routing. This way if I need to get back into
the lab network from the corp network, I could use a VPN connection.

Config:
LAB Nic = 192.168.3.1/24
Corp Nic = 10.10.10.200/8

Problem:
Clients from the lab network can get accross NAT router to the Corp Lan, but
only to hosts in the 10.10.10.0 subnet, they can't get to anything on the
other corp networks (can't get out of the 10.10.10.0 subnet). The Widows
2003 server can ping addresses in the 10.10.10.0 network, but not anything on
the other side of the 10.10.10.0 network. Clients in the 10.10.10.0 network
can get accross to other corp subnets, but clients in other subnets can't
ping my windows 2003 server at 10.10.10.200. I've checked that the Windows
2003 server NIC connected to the corp network has the correct subnet and
router configured. Is there something I need to add to the servers route
table?

--
Thanks
Jim

01-06-2006, 04:24 PM

Jim-

Take a look at your route table. Your looking for the default route
(0.0.0.0). It should be pointing out to 10.10.10.1 or whatever your DG is on
the 10 network. Make sure your 192.168.3.0 network does not have a DG.

"Jim Fitch" <(E-Mail Removed)> wrote in message
news:0F92098F-98EF-4CFB-90F8-(E-Mail Removed)...
> Community,
> I'm trying to setup a Windows 2003 stand alone server as a NAT router to
> isolate my lab network away from my corp network. Installed Windows 2003
> Standard Server with two NIC Cards. Follwed the Routing and Remote Access
> wizard to create a VPN with NAT Routing. This way if I need to get back
into
> the lab network from the corp network, I could use a VPN connection.
>
> Config:
> LAB Nic = 192.168.3.1/24
> Corp Nic = 10.10.10.200/8
>
> Problem:
> Clients from the lab network can get accross NAT router to the Corp Lan,
but
> only to hosts in the 10.10.10.0 subnet, they can't get to anything on the
> other corp networks (can't get out of the 10.10.10.0 subnet). The Widows
> 2003 server can ping addresses in the 10.10.10.0 network, but not anything
on
> the other side of the 10.10.10.0 network. Clients in the 10.10.10.0
network
> can get accross to other corp subnets, but clients in other subnets can't
> ping my windows 2003 server at 10.10.10.200. I've checked that the
Windows
> 2003 server NIC connected to the corp network has the correct subnet and
> router configured. Is there something I need to add to the servers route
> table?
>
> --
> Thanks
> Jim

01-06-2006, 11:04 PM

You might also check what subnet mask is being used on your 10.10.10
subnet. If your company is using an 8bit subnet the network would be
10.0.0.0/8 . I suspect that you should be using 10.10.10.0/24 .

Neteng wrote:
> Jim-
>
> Take a look at your route table. Your looking for the default route
> (0.0.0.0). It should be pointing out to 10.10.10.1 or whatever your
> DG is on the 10 network. Make sure your 192.168.3.0 network does not
> have a DG.
>
> "Jim Fitch" <(E-Mail Removed)> wrote in message
> news:0F92098F-98EF-4CFB-90F8-(E-Mail Removed)...
>> Community,
>> I'm trying to setup a Windows 2003 stand alone server as a NAT
>> router to isolate my lab network away from my corp network.
>> Installed Windows 2003 Standard Server with two NIC Cards. Follwed
>> the Routing and Remote Access wizard to create a VPN with NAT
>> Routing. This way if I need to get back into the lab network from
>> the corp network, I could use a VPN connection.
>>
>> Config:
>> LAB Nic = 192.168.3.1/24
>> Corp Nic = 10.10.10.200/8
>>
>> Problem:
>> Clients from the lab network can get accross NAT router to the Corp
>> Lan, but only to hosts in the 10.10.10.0 subnet, they can't get to
>> anything on the other corp networks (can't get out of the 10.10.10.0
>> subnet). The Widows 2003 server can ping addresses in the
>> 10.10.10.0 network, but not anything on the other side of the
>> 10.10.10.0 network. Clients in the 10.10.10.0 network can get
>> accross to other corp subnets, but clients in other subnets can't
>> ping my windows 2003 server at 10.10.10.200. I've checked that the
>> Windows 2003 server NIC connected to the corp network has the
>> correct subnet and router configured. Is there something I need to
>> add to the servers route table?
>>
>> --
>> Thanks
>> Jim

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
Win2003 R2 server just stops routing traffic until I restart Routing service	Martijn Tonies	Windows Networking	8	11-03-2008 11:05 AM
Win2003 RRAS Remote Access VPN Routing Question..	LVDave	Windows Networking	2	01-02-2008 10:46 PM
[win2003] RRAS problem	MaNwE	Windows Networking	0	05-22-2005 11:21 PM
RIS and Win2003 SP1 speed problem	Bruce from New Zealand	Windows Networking	0	05-17-2005 12:05 AM
Trust problem Win2003<->WinNT4	Einari	Windows Networking	0	04-26-2004 07:51 AM