General discussion

Locked

VPN Troubles

By mark.stroemich ·
I am trying to setup a VPN connection. I have windows 2000 server on one end running RAS and Windows 2000 Pro on the other end. The server is behind a linksys router that is passing through VPN traffic to the server. I can make the connection but I can not see any network resources. I can ping the server name and all IP's on the network, but I cannot ping other computer names on network. I know I am close I just need someone to nudge in the right direction to make this connection work properly. Thank you in advance!!

This conversation is currently closed to new comments.

9 total posts (Page 1 of 1)  
Thread display: Collapse - | Expand +

All Comments

Collapse -

by fjaramillo In reply to VPN Troubles

What is the IP address on the Win2Pro VPN client?
What is the IP address the VPN server is issueing the client?
Are the addresses that you are trying to ping on a different subnet?? what ips can you ping ?

Nando

Collapse -

by mark.stroemich In reply to

The 2K pro client has a ip of 192.168.2.100 on the nic card the VPN is being issued a ip of 192.168.1.225

The IP address of the server is 192.168.1.103

I can ping all the clients on the network that i am trying to connect to but I have no name resolution with any of the clients. I can get name resolution with the VPN server.

Collapse -

by CG IT In reply to VPN Troubles

first is what are the remote access policies you have in place on the RRAS server. Second how are client computers getting ip addresses? Third, what authentication requirements do you have on RRAS?

Collapse -

by CG IT In reply to

you might want to enable BOOTTP on the RRAS server to allow clients to obtain IP address from your DHCP server instead of RRAS server. that way you'll get the DHCP configuration settings for client computers which includes the options you've set like DNS, Routers [gateway],WINS, etc. Without those, remote access clients don't know where to look for DNS servers on the net and RRAS doesn't supply the A records or PTR records to remote clients. open up RRAS and right click on your server name. choose properties. Enable RRAS as either a "Router" to route traffic OR as a "Remote Access Server" depending upon how you have your network setup. I'll assume you have RRAS setup as a "Remote Access Server". Next, click on IP tab and make sure that the Enable IP routing and Allow IP based remote access is checked. Also check the IP assignment DHCP and choose the adapter you will use for DHCP, DNS WINS clients [LAN adapter in a multihomed setup]. Next expand IP routing and right click DHCP relay agent. choose properties. Add in the IP address of your LAN DHCP server.

Next, configure your remote access policy. Note that policies are executed in the list from top to bottom. First policy shown is first policy executed. Also for security sake make the policies order most restrictive to least restrictive. Else if least restrictive is first then everyone and their mother, the pet dog, and unknown entities from beyond can access.
Finally , make sure port 1723 both udp and tcp are open both inbound and outbound direction and GRE port 47 on any access servers / perimeter firewalls.

Collapse -

by mark.stroemich In reply to

Thank you for your help. I hard coded the WINS address on the VPN client and then I got name resolution. Thank you for your help and insight. It helped alot. Thanks again, Happy VPN user!!!!

Collapse -

by CG IT In reply to VPN Troubles

first is what are the remote access policies you have in place on the RRAS server. Second how are client computers getting ip addresses? Third, what authentication requirements do you have on RRAS?

Collapse -

by fjaramillo In reply to VPN Troubles

Mark,


For testing purposes you could:

You could try creating a custom hosts file on the VPN client with all the remote entries in the hosts file (\winnt\system32\drivers\etc)

or

Hard code the DNS server you want to use on the TCP/IP properties of the client's pptp dialup connection.

Nando

Collapse -

by mark.stroemich In reply to

Thank you for your help. I hard coded the WINS address on the VPN client and then I got name resolution. Thank you for your help and insight. It helped alot. Thanks again, Happy VPN user!!!!

Collapse -

by mark.stroemich In reply to VPN Troubles

This question was closed by the author

Back to Windows Forum
9 total posts (Page 1 of 1)  

Related Discussions

Related Forums