Site to Site VPN Problems

  • Thread starter Thread starter Guest
  • Start date Start date
G

Guest

I'm having some major problems with a site to site vpn. I was able to
successfully set up demand dial connections in both sites and sucessfully
connected. For some reason I can't ping another workstation across sites. I
setup a child domain server on the main site and brought it to the branch
site to be used as the network bridgehead. If I ping from the rras server
itself, I can ping both the Internal address and both demand dial
connections, but it won't ping the internal address of the other router
across the connection. If I try to ping from a workstation, the only thing I
can ping is the ip address of the demand dial connection. Do you think it
could be something to do with the fact that I actually setup the network with
a class B ip addresses. In theory it should all be "one" network . I didn't
use any subnets. One network starts with 172.16.31.x and the other one
starts wtih 172.16.20.x both with a netmask of 255.255.0.0. Please help!!!
 
Are you using ISA? If so, I had this same problem until I setup an access
rule allowing for traffic to pass over the VPN.
 
Sounds like routing issue. Posting the results of both server routing tables here may help.

Bob Lin, MS-MVP, MCSE & CNE
Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
I'm having some major problems with a site to site vpn. I was able to
successfully set up demand dial connections in both sites and sucessfully
connected. For some reason I can't ping another workstation across sites. I
setup a child domain server on the main site and brought it to the branch
site to be used as the network bridgehead. If I ping from the rras server
itself, I can ping both the Internal address and both demand dial
connections, but it won't ping the internal address of the other router
across the connection. If I try to ping from a workstation, the only thing I
can ping is the ip address of the demand dial connection. Do you think it
could be something to do with the fact that I actually setup the network with
a class B ip addresses. In theory it should all be "one" network . I didn't
use any subnets. One network starts with 172.16.31.x and the other one
starts wtih 172.16.20.x both with a netmask of 255.255.0.0. Please help!!!
 
Back
Top