Strange Access & Routing problem

  • Thread starter Thread starter Syncro
  • Start date Start date
S

Syncro

Hi all,

I'm experiencing a strange behavior.

All of a sudden, our Internet stop working. Our setup is a W2K server
(domain controller) with DNS and DHCP hookup to a router who asct as the
gateway.

We used to hace Access and Routing Turn on for remote workers to access our
server (using built-in w2k vpn) form outside.

I've checked everything and the only way to get back our internet was to
turn off the access and routing service. If I turn it on again, no internet
access. Local area network still work as usual.

Any ideas on how to fix this?

We are planning a windows 2003 migration soon. Will this fix the problem?
Should I do a fresh install instead? What is the best way to go here since
this is a standalone server?

JP
 
You haven't described the topology.

If the "router" is doing NAT then the RRAS box would have only one nic and
operate as any other machine behind the "router". The "router" must use
"VPN Passthrough" so VPN callers can connect to the RRAS box.

If the RRAS box has two Nics and has NAT enabled then you have created a
Back-to-Back DMZ between the "router" and your RRAS box which can be part of
your problem because the DMZ is "in the way" and the users can never connect
tot he RRAS box.

If the RRAS box has two Nics but does not have NAT enabled, then the RAS box
is operating as a LAN Router with one LAN segment between it and the
"router" and another LAN segment on the other side of the RRAS box. In this
case RRAS must be properly configured to be a LAN Router primarily and as a
VPN Server secondarily.

If the "router" is not doing NAT, then it is not a "router" but a Cable/DSL
Modem. The RRAS box must have two Nics and be setup to function as the LAN's
NAT Device and also as the LAN's VPN Server.

And there are probably other "models" that I haven't described, but it
indicates why we can't simply answer that type of question without knowing
these things.
 
The topology is the following,

Server is DHCP
Server is DNS
Server is VPN (Routing & Remote Access)
Server has two nics (statics IP addresse)
Router Is Gateway

If I turn off Rounting & Remote Access no problem with the internet (server
and workstations).

If I turn on Routing & Remote Access, no internet access anymore.

Routing & Remote Access was properly installed and use to work. The problem
arise suddenly

Jean-Pierre




Phillip Windell said:
You haven't described the topology.

If the "router" is doing NAT then the RRAS box would have only one nic and
operate as any other machine behind the "router". The "router" must use
"VPN Passthrough" so VPN callers can connect to the RRAS box.

If the RRAS box has two Nics and has NAT enabled then you have created a
Back-to-Back DMZ between the "router" and your RRAS box which can be part
of
your problem because the DMZ is "in the way" and the users can never
connect
tot he RRAS box.

If the RRAS box has two Nics but does not have NAT enabled, then the RAS
box
is operating as a LAN Router with one LAN segment between it and the
"router" and another LAN segment on the other side of the RRAS box. In
this
case RRAS must be properly configured to be a LAN Router primarily and as
a
VPN Server secondarily.

If the "router" is not doing NAT, then it is not a "router" but a
Cable/DSL
Modem. The RRAS box must have two Nics and be setup to function as the
LAN's
NAT Device and also as the LAN's VPN Server.

And there are probably other "models" that I haven't described, but it
indicates why we can't simply answer that type of question without knowing
these things.

--

Phillip Windell [MCP, MVP, CCNA]
www.wandtv.com


Syncro said:
Hi all,

I'm experiencing a strange behavior.

All of a sudden, our Internet stop working. Our setup is a W2K server
(domain controller) with DNS and DHCP hookup to a router who asct as the
gateway.

We used to hace Access and Routing Turn on for remote workers to access our
server (using built-in w2k vpn) form outside.

I've checked everything and the only way to get back our internet was to
turn off the access and routing service. If I turn it on again, no internet
access. Local area network still work as usual.

Any ideas on how to fix this?

We are planning a windows 2003 migration soon. Will this fix the problem?
Should I do a fresh install instead? What is the best way to go here
since
this is a standalone server?

JP
Click to expand...
Click to expand...
 
Back
Top