VPN Server will not allow information to Pass-through.

  • Thread starter Thread starter Guest
  • Start date Start date
G

Guest

I have a Win 2000 Server machine acting as a remote access VPN server. When
a client machine connects to the Remote access server it is unable to connect
to any resources on the 137.135.128.x network segment. Any ideas?
Thanks in advance.

Server:
LAN1: 10.1.1.67
LAN2: 137.135.128.112

Client:
LAN: 10.1.1.57
After connecting to the VPN Server
LAN: 10.1.1.57
WAN: 137.135.128.4

A ping, from the VPN client, to the servers LAN2 card is successful only
after the VPN connection has been established.

A ping, from the VPN client, to 137.135.128.253 (another server) fails.

In the remote access administrative tool, static routes appear as such:

LAN 2
Destination:137.135.128.0
Net Mask: 255.255.255.0
Gateway: 137.135.128.112
Metric: 1

LAN 1
Destination: 10.1.0.0
Net Mask: 255.255.0.0
Gateway: 10.1.1.67
Metric: 1
 
we will have some issues with this configuration. You should not have two gateway on one server. also why do you put all servers on 137.135128.x subnet?

Bob Lin, MS-MVP, MCSE & CNE
Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
I have a Win 2000 Server machine acting as a remote access VPN server. When
a client machine connects to the Remote access server it is unable to connect
to any resources on the 137.135.128.x network segment. Any ideas?
Thanks in advance.

Server:
LAN1: 10.1.1.67
LAN2: 137.135.128.112

Client:
LAN: 10.1.1.57
After connecting to the VPN Server
LAN: 10.1.1.57
WAN: 137.135.128.4

A ping, from the VPN client, to the servers LAN2 card is successful only
after the VPN connection has been established.

A ping, from the VPN client, to 137.135.128.253 (another server) fails.

In the remote access administrative tool, static routes appear as such:

LAN 2
Destination:137.135.128.0
Net Mask: 255.255.255.0
Gateway: 137.135.128.112
Metric: 1

LAN 1
Destination: 10.1.0.0
Net Mask: 255.255.0.0
Gateway: 10.1.1.67
Metric: 1
 
Like Bob, I am a bit mystified by this setup. Is this some sort of
testing setup? Why would you want to use VPN when the client is directly
connected to the RRAS server?

Do you perhaps want a setup where the clients in 10.1 cannot see
anything in 137.135.128 unless they use a VPN connection? I presume IP
routing is not enabled on the RRAS server.

A simple diagram of the network would help. eg

Router?
|
workstations
10.1.x.y dg ?
|
10.1.1.57 dg blank
RRAS
137.135.128.112 dg blank
|
137.135.128.x dg ?
 
All the servers aren't on the 137 net, you assumed that. There is a PBX on
the 137 that needs to be controlled by a client residing on the 10 net. A
RAS server was put up to act as a gateway between the 10 and the 137. if i
put an XP box in place of the server and allow VPN to the XP box my client's
information is properly routed to the PBX... Why isn't server 2000 doing the
same?
 
Why would you need a diagram... The router plays no role in this setup.
there is a workstation on the 10 net that needs to connect to a resource on
the 137 net. There is a server running RAS that has two nics, 1 using a 10
number another using a 137 number. when connecting to the 10 card from a 10
client everything looks as if it will route properly, but then nothing gets
routed throught the 137 card to the 137 resource.
 
Back
Top