Internet Access stops after connecting to VPN sever.

[Lance Bockelman]

I have recently setup a Windows 2003 Standard Server as a
VPN server for our company. Users can connect and access
resources on the network with no problem (Exchange
server, intranet ect...) but when they try and go out to
the internet they cannot get out. I can tell that the DNS
is resolving to the correct place because it displays the
IP of the address that they are trying to connect to in
the lower left of IE. I am lead to believe that its a
Gateway problem, that when they are connected their
connection cant find its way out to the internet.
Here is my setup:
Corporate network. Pix firewall 10.0.0.9, VPN server
(Inside NIC) 10.0.0.1 (Outside NIC) Public IP address.
Currently there is no defualt gateway set on the inside
NIC and there is on the external nic (points the to ISP's
gateway) I have tried swapping the gateways and having
them both added with the same result.
What do I need to do to make the internet work when users
are using the VPN connection?

Any Help would be greatly appreciated.
Thanks,
Lance
(e-mail address removed)

 

[Bill Grant]

NO, that won't work. The default route of the server must be to the
Internet via its public NIC, or the VPN will not work. So there is no way
you can get Internet traffic to the PIX, as that would require a default
route. You cannot have default routes to two different gateways!

You could give the remote clients Internet access via the RRAS server
using NAT. Or you could just get the clients to clear the "Use default
gateway .. " setting in their connection properties, so that the retained
their default route to the Internet. Otherwise you would need to reconfigure
your LAN to use a common default gateway.