VPN 2 questions

  • Thread starter Thread starter JJ
  • Start date Start date
J

JJ

This is briefly my network setup

Main office: 192.168.0.0/24

Hardware firewall (81.12.71.11) which connects via VPN to firewall
(62.24.23.29) at secondary office

Secondary office: 192.168.3.0/24


Main office has RRAS installed and users can connect 81.12.71.12 no problem.
81.12.71.12 is a MIP address set on the firewall to map to 192.168.0.1



Question 1) How do I allow VPN clients connected to 81.12.71.12
(192.168.0.1) to access servers located on the 192.168.3.0 subnet?

Question 2) Some of our users access from networks with 192.168.0.0/24
subnets which clash with our main office subnet. How can I configure RRAS to
work around this?



Many thanks
 
1. posting the routing table may help.

2. You may setup peer to peer router.

VPN using same ip in the different subnet office via VPN. My home users have the internal IP address range of 192.168.0 ... cannot have the exact same IP address range so I have separated the two by ...
www.chicagotech.net/Q&A/vpn38.htm


Bob Lin, MS-MVP, MCSE & CNE
Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
This is briefly my network setup

Main office: 192.168.0.0/24

Hardware firewall (81.12.71.11) which connects via VPN to firewall
(62.24.23.29) at secondary office

Secondary office: 192.168.3.0/24


Main office has RRAS installed and users can connect 81.12.71.12 no problem.
81.12.71.12 is a MIP address set on the firewall to map to 192.168.0.1



Question 1) How do I allow VPN clients connected to 81.12.71.12
(192.168.0.1) to access servers located on the 192.168.3.0 subnet?

Question 2) Some of our users access from networks with 192.168.0.0/24
subnets which clash with our main office subnet. How can I configure RRAS to
work around this?



Many thanks
 
Regarding question 1, the remote client should be able to access LAN
machines automatically. If you connect by VPN you are "inside" the firewall.
However name resolution may not work because broadcasts don't usually work
 
Back
Top