Everything ok except one service

  • Thread starter Thread starter Ian Ho
  • Start date Start date
I

Ian Ho

A client successfully connect through RAS VPN, openning share folders,
printer
and email account have no problem at all to the server IP (192.168.111.2).
However, the client cannot connect to a instant messaging service that use
port
4000 on that same server, a bit strange that the client can establish
connection
by using the RAS Internal interface IP (that is assigned by DHCP).
Any help please? It is not feasible to tell the client to connect via RAS
Internal
interface because I cannot give a fix IP to the RAS Internal interface.

Ian
 
Is the RAS Server having any filters to block the public traffic? Since the
client is trying to reach the messenger service on the server, it will use
the public IP address. You need to add a host route to the VPN Server to
carry the traffic outside of the tunnel. To avoid this, you should always
use the internal interface's IP address so that the communication happens
over the tunnel.
 
Since the RAS server Internal interface IP is assigned by DHCP, and
my messaging server is that RAS server (same host). The client
cannot connect to messaging service on the RAS Server LAN interface
IP but only the Internal internface IP.

Brief Description:
Server running RAS, messaging service, DHCP
LAN IP: 192.168.15.2
RAS Internal IP: 192.168.15.166 (assigned by DHCP, different every time)
RAS Client IP: 192.168.15.x (assigned by DHCP, dfferent every time)

The problem is client is able to connect all service on 192.168.15.2
except the messaging service. He then connect the messaging app to
192.168.15.166 successfully. But this IP is ever-changing, it is not
possible to ask the client to change the messaging app setting on each
connection

Ian
 
There is no straightforward solution to this problem. You probably can try
using static IP addresses in the RRAS server. The first IP address would be
assigned to the internal interface.
 
Yes, but from Microsoft web site, it said to use IP range different from
LAN IP subnet if configuring static IP address in RRAS. That is not
feasible in my environment. And force the same subnet IP in static IP
will render the client fail to connect to network resources. Any solution?

Ian
 
Back
Top