configuring RRAS

[Don Devenney]

I'm operating a Win2K server, AD enabled, Domain
controller,DNS, servicing about 20 workstations,3
printers. We've determined a need for remote access so
I've been attempting - without success - to enable RRAS.
I read the White Paper on the subject - incorporated the
salient points (or so I thought) and still no luck.
Here's the config:

Internet NIC:

ip - 192.168.1.100
mask - 255.255.255.0
gateway - 192.168.1.1
DNS server - 192.168.1.4

Internal NIC:
ip -192.168.1.4
mask - 255.255.255.0
gateway - none (as per white paper)

I'm using a Linksys router that is configured to allow
PPTP traffic, and I have also mapped port 1723 traffic to
the ip of the "internet" NIC.

When configuring the RRAS I used the wizard and followed
the instructions listed in the white paper (and as shown
in several KP articles).

When trying to connect from a VPN client, traffic is being
passed through the firewall, and I receive "Error 721". A
side issue is that other network users can't connect to
the internet or browse the network shortly after RRAS is
enabled.

Sorry to be long-winded but I wanted to provide as much
info as possible. Any help would be greatly appreciated.

thanks,

Don Devenney

 

[Marc Reynolds [MSFT]]

Make sure the Linksys router is also allowing IP Protocol 47 (GRE) which
some routers call "PPTP Passthrough".
As a test try to run a VPN client on the Internal network and connect. If
this works, the problem is pointing to your router.

--

Thanks,
Marc Reynolds
Microsoft Technical Support

This posting is provided "AS IS" with no warranties, and confers no rights.

 

[Bill Grant]

If you have two NICs in the RRAS server, they cannot be in the same IP
subnet. You will have to decide whether to run the server with one NIC
(using forwarding from the router to get the traffic to the server), or
reconfigure your network.

If you have two NICs in the RRAS server, one NIC must be in the same
subnet as the router and the other must be in the same subnet as the LAN
machines. The LAN clients cannot access the router directly, but must use
the LAN NIC of the server as their default gateway.

Note that running remote access on your first/only DC may also cause
problems with browsing and DNS. See KB 292822.

 

[EnJOY]

*If you have two NICs in the RRAS server, they cannot be in the sam
IP
subnet. You will have to decide whether to run the server with on
NIC
(using forwarding from the router to get the traffic to the server)
or
reconfigure your network.

If you have two NICs in the RRAS server, one NIC must be in the same
subnet as the router and the other must be in the same subnet as th
LAN
machines. The LAN clients cannot access the router directly, but mus
use
the LAN NIC of the server as their default gateway.

Note that running remote access on your first/only DC may also cause
problems with browsing and DNS. See KB 292822.

message

Hey Don,
Check with your Linksys router guys and ask them to update the firmwar
on the router. That would hopefully resolve the issue.
Best Regards,
Sujoy Chatterjee.
Microsoft Networking Suppor


-
EnJO