Browsing Internet While Connected To VPN

Guest · Feb 11, 2007

Hi,
I'm unable to browse the internet when connected to a network via VPN.

The problem is I need to have "use default gateway on remote network" option
checked on my VPN connection settings.

The VPN server is Win2k3 and it works fine when WinXP clients connects to it
via VPN.

Could anyone please help?

Many thanks in advance

Robert L [MVP - Networking] · Feb 12, 2007

Please post back with the result of tracert 4.2.2.1 from the VPN Vista client.

Bob Lin, MS-MVP, MCSE & CNE
Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
Hi,
I'm unable to browse the internet when connected to a network via VPN.

The problem is I need to have "use default gateway on remote network" option
checked on my VPN connection settings.

The VPN server is Win2k3 and it works fine when WinXP clients connects to it
via VPN.

Could anyone please help?

Many thanks in advance

Guest · Feb 12, 2007

thanks Robert for the help, here is my tracrt 4.2.2.1 results (while
connected to vpn):

Tracing route to vnsc-pri.sys.gtei.net [4.2.2.1]
over a maximum of 30 hops:

1 * * * Request timed out.
2 333 ms 332 ms 472 ms 209.97.215.1
3 333 ms 332 ms 332 ms gt2.02.bigpipe.gigF.rackforce.net
[69.10.128.197
]
4 334 ms 334 ms 335 ms ra1ht-ge3-2-14.ok.bigpipeinc.com
[64.251.64.49]

5 333 ms 334 ms 334 ms rd1ht-ge2-1.ok.shawcable.net [66.163.72.133]
6 342 ms 344 ms 342 ms rc1no-ge4-0.cg.shawcable.net [66.163.77.122]
7 343 ms 342 ms 342 ms rc1so-pos15-0.cg.shawcable.net [66.163.77.9]
8 355 ms 357 ms 356 ms rc1wh-pos12-0.vc.shawcable.net [66.163.76.10]
9 358 ms 359 ms 359 ms rc1wt-pos1-0-0.wa.shawcable.net [66.163.76.2]
10 360 ms 358 ms 381 ms 4.79.110.9
11 357 ms 361 ms 359 ms ge-11-0.hsa1.Seattle1.Level3.net [4.68.105.38]
12 357 ms 360 ms 359 ms vnsc-pri.sys.gtei.net [4.2.2.1]

Trace complete.

Robert L [MVP - Networking] · Feb 13, 2007

4.2.2.1 is public IP. It seems to me the internet access works. The problem could be the DNS.

Bob Lin, MS-MVP, MCSE & CNE
Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
thanks Robert for the help, here is my tracrt 4.2.2.1 results (while
connected to vpn):

Tracing route to vnsc-pri.sys.gtei.net [4.2.2.1]
over a maximum of 30 hops:

1 * * * Request timed out.
2 333 ms 332 ms 472 ms 209.97.215.1
3 333 ms 332 ms 332 ms gt2.02.bigpipe.gigF.rackforce.net
[69.10.128.197
]
4 334 ms 334 ms 335 ms ra1ht-ge3-2-14.ok.bigpipeinc.com
[64.251.64.49]

5 333 ms 334 ms 334 ms rd1ht-ge2-1.ok.shawcable.net [66.163.72.133]
6 342 ms 344 ms 342 ms rc1no-ge4-0.cg.shawcable.net [66.163.77.122]
7 343 ms 342 ms 342 ms rc1so-pos15-0.cg.shawcable.net [66.163.77.9]
8 355 ms 357 ms 356 ms rc1wh-pos12-0.vc.shawcable.net [66.163.76.10]
9 358 ms 359 ms 359 ms rc1wt-pos1-0-0.wa.shawcable.net [66.163.76.2]
10 360 ms 358 ms 381 ms 4.79.110.9
11 357 ms 361 ms 359 ms ge-11-0.hsa1.Seattle1.Level3.net [4.68.105.38]
12 357 ms 360 ms 359 ms vnsc-pri.sys.gtei.net [4.2.2.1]

Trace complete.

Guest · Feb 13, 2007

Hi Robert,
I figured it's something to do with the DNS at first because I couldn't get
"ping google.com" to resolve google IP address.

But when I checked the assigned DNS IPs, they were fine (the same ones on
the remote network)

However, figuring that out didn't help me much in understanding what's the
issue or how to resolve it. Hence I posted here hoping someone might be able
to help.

Anyway, many thanks for trying.

Robert L said:
4.2.2.1 is public IP. It seems to me the internet access works. The problem could be the DNS.

Bob Lin, MS-MVP, MCSE & CNE
Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
thanks Robert for the help, here is my tracrt 4.2.2.1 results (while
connected to vpn):

Tracing route to vnsc-pri.sys.gtei.net [4.2.2.1]
over a maximum of 30 hops:

1 * * * Request timed out.
2 333 ms 332 ms 472 ms 209.97.215.1
3 333 ms 332 ms 332 ms gt2.02.bigpipe.gigF.rackforce.net
[69.10.128.197
]
4 334 ms 334 ms 335 ms ra1ht-ge3-2-14.ok.bigpipeinc.com
[64.251.64.49]

5 333 ms 334 ms 334 ms rd1ht-ge2-1.ok.shawcable.net [66.163.72.133]
6 342 ms 344 ms 342 ms rc1no-ge4-0.cg.shawcable.net [66.163.77.122]
7 343 ms 342 ms 342 ms rc1so-pos15-0.cg.shawcable.net [66.163.77.9]
8 355 ms 357 ms 356 ms rc1wh-pos12-0.vc.shawcable.net [66.163.76.10]
9 358 ms 359 ms 359 ms rc1wt-pos1-0-0.wa.shawcable.net [66.163.76.2]
10 360 ms 358 ms 381 ms 4.79.110.9
11 357 ms 361 ms 359 ms ge-11-0.hsa1.Seattle1.Level3.net [4.68.105.38]
12 357 ms 360 ms 359 ms vnsc-pri.sys.gtei.net [4.2.2.1]

Trace complete.

Robert L said:

Please post back with the result of tracert 4.2.2.1 from the VPN Vista client.

Bob Lin, MS-MVP, MCSE & CNE
Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
Hi,
I'm unable to browse the internet when connected to a network via VPN.

The problem is I need to have "use default gateway on remote network" option
checked on my VPN connection settings.

The VPN server is Win2k3 and it works fine when WinXP clients connects to it
via VPN.

Could anyone please help?

Many thanks in advance

Click to expand...

Rama Amaravadi [MSFT] · Feb 14, 2007

When you select "use default gateway on remote network" then all the traffic
goes over VPN interface. This includes the DNS queries also. Please make
sure that the DNS server in the corpnet is able to resolve the DNS names
that the client is trying to connect.

--
Thanks,
Rama Amaravadi [MSFT]
RRAS blog: http://blogs.technet.com/rrasblog
[This posting is provided "AS IS" with no warranties, and confers no
rights.]

Oxygen said:
Hi Robert,
I figured it's something to do with the DNS at first because I couldn't
get
"ping google.com" to resolve google IP address.

But when I checked the assigned DNS IPs, they were fine (the same ones on
the remote network)

However, figuring that out didn't help me much in understanding what's the
issue or how to resolve it. Hence I posted here hoping someone might be
able
to help.

Anyway, many thanks for trying.

Robert L said:

4.2.2.1 is public IP. It seems to me the internet access works. The
problem could be the DNS.

Bob Lin, MS-MVP, MCSE & CNE
Networking, Internet, Routing, VPN Troubleshooting on
http://www.ChicagoTech.net
How to Setup Windows, Network, VPN & Remote Access on
http://www.HowToNetworking.com
thanks Robert for the help, here is my tracrt 4.2.2.1 results (while
connected to vpn):

Tracing route to vnsc-pri.sys.gtei.net [4.2.2.1]
over a maximum of 30 hops:

1 * * * Request timed out.
2 333 ms 332 ms 472 ms 209.97.215.1
3 333 ms 332 ms 332 ms gt2.02.bigpipe.gigF.rackforce.net
[69.10.128.197
]
4 334 ms 334 ms 335 ms ra1ht-ge3-2-14.ok.bigpipeinc.com
[64.251.64.49]

5 333 ms 334 ms 334 ms rd1ht-ge2-1.ok.shawcable.net
[66.163.72.133]
6 342 ms 344 ms 342 ms rc1no-ge4-0.cg.shawcable.net
[66.163.77.122]
7 343 ms 342 ms 342 ms rc1so-pos15-0.cg.shawcable.net
[66.163.77.9]
8 355 ms 357 ms 356 ms rc1wh-pos12-0.vc.shawcable.net
[66.163.76.10]
9 358 ms 359 ms 359 ms rc1wt-pos1-0-0.wa.shawcable.net
[66.163.76.2]
10 360 ms 358 ms 381 ms 4.79.110.9
11 357 ms 361 ms 359 ms ge-11-0.hsa1.Seattle1.Level3.net
[4.68.105.38]
12 357 ms 360 ms 359 ms vnsc-pri.sys.gtei.net [4.2.2.1]

Trace complete.

Robert L said:

Please post back with the result of tracert 4.2.2.1 from the VPN Vista client.

Bob Lin, MS-MVP, MCSE & CNE
Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
Hi,
I'm unable to browse the internet when connected to a network via VPN.

The problem is I need to have "use default gateway on remote network" option
checked on my VPN connection settings.

The VPN server is Win2k3 and it works fine when WinXP clients connects to it
via VPN.

Could anyone please help?

Many thanks in advance

Click to expand...

Click to expand...

Guest · Feb 14, 2007

Hi Rama,
Thanks for you reply. The DNS at the VPN Server network works just fine.

Here are the things that I'm sure about:
1- The Win2k3 VPN Server works just fine.

2- All WinXP VPN clients that connects to the Win2k3 VPN Server, with "use
default gateway on remote network" option set, are fine and can browse the
web.

3- All Vista VPN clients that connects to the Win2k3 VPN Server, with "use
default gateway on remote network" option set, CANNOT browse the web.

4- All Vista VPN clients that connects to the Win2k3 VPN Server, with "use
default gateway on remote network" option NOT set, CAN browse the web.

I don't know what I'm doing wrong here. I'm setting the VPN connection via
the wizard while leaving everything at default. (the "use default gateway"
option already set by default when using the vista new VPN connection wizard)

Do you know, by any chance, if the procedure to setup a VPN in Vista
requires more tweaking to the wizard's default values?

Or the default VPN connection wizard values are enough to get browsing the
web through the VPN network possible?

many thanks in advance

Rama Amaravadi said:
When you select "use default gateway on remote network" then all the traffic
goes over VPN interface. This includes the DNS queries also. Please make
sure that the DNS server in the corpnet is able to resolve the DNS names
that the client is trying to connect.

--
Thanks,
Rama Amaravadi [MSFT]
RRAS blog: http://blogs.technet.com/rrasblog
[This posting is provided "AS IS" with no warranties, and confers no
rights.]

Oxygen said:

Hi Robert,
I figured it's something to do with the DNS at first because I couldn't
get
"ping google.com" to resolve google IP address.

But when I checked the assigned DNS IPs, they were fine (the same ones on
the remote network)

However, figuring that out didn't help me much in understanding what's the
issue or how to resolve it. Hence I posted here hoping someone might be
able
to help.

Anyway, many thanks for trying.

Robert L said:

4.2.2.1 is public IP. It seems to me the internet access works. The
problem could be the DNS.

Bob Lin, MS-MVP, MCSE & CNE
Networking, Internet, Routing, VPN Troubleshooting on
http://www.ChicagoTech.net
How to Setup Windows, Network, VPN & Remote Access on
http://www.HowToNetworking.com
thanks Robert for the help, here is my tracrt 4.2.2.1 results (while
connected to vpn):

Tracing route to vnsc-pri.sys.gtei.net [4.2.2.1]
over a maximum of 30 hops:

1 * * * Request timed out.
2 333 ms 332 ms 472 ms 209.97.215.1
3 333 ms 332 ms 332 ms gt2.02.bigpipe.gigF.rackforce.net
[69.10.128.197
]
4 334 ms 334 ms 335 ms ra1ht-ge3-2-14.ok.bigpipeinc.com
[64.251.64.49]

5 333 ms 334 ms 334 ms rd1ht-ge2-1.ok.shawcable.net
[66.163.72.133]
6 342 ms 344 ms 342 ms rc1no-ge4-0.cg.shawcable.net
[66.163.77.122]
7 343 ms 342 ms 342 ms rc1so-pos15-0.cg.shawcable.net
[66.163.77.9]
8 355 ms 357 ms 356 ms rc1wh-pos12-0.vc.shawcable.net
[66.163.76.10]
9 358 ms 359 ms 359 ms rc1wt-pos1-0-0.wa.shawcable.net
[66.163.76.2]
10 360 ms 358 ms 381 ms 4.79.110.9
11 357 ms 361 ms 359 ms ge-11-0.hsa1.Seattle1.Level3.net
[4.68.105.38]
12 357 ms 360 ms 359 ms vnsc-pri.sys.gtei.net [4.2.2.1]

Trace complete.

:

Please post back with the result of tracert 4.2.2.1 from the VPN
Vista client.

Bob Lin, MS-MVP, MCSE & CNE
Networking, Internet, Routing, VPN Troubleshooting on
http://www.ChicagoTech.net
How to Setup Windows, Network, VPN & Remote Access on
http://www.HowToNetworking.com
Hi,
I'm unable to browse the internet when connected to a network via
VPN.

The problem is I need to have "use default gateway on remote
network" option
checked on my VPN connection settings.

The VPN server is Win2k3 and it works fine when WinXP clients
connects to it
via VPN.

Could anyone please help?

Many thanks in advance

Click to expand...

Click to expand...

Guest · Mar 5, 2007

anyone can help? Please?

Guest · May 16, 2007

I share you pain as I also have this issue. However, when I close my VPN
connection, I also have to disconnect and reconect my wireless boadband
service for the internet browsing to become accessable again.

Will let you know if I come up with anything, I aleady check MS's
knowledgebase with no success.

Aanand Ramachandran · May 17, 2007

Hi Tony/Oxygen,
Can you send me the output of 'ipconfig' and 'route print -4' (routing
table)? For the routing table out put send it both before and after enabling
the "use default gateway on remote network" option.
Another thing. Would you happen to know if your network administrator
uses DHCP to assign you the routes? This info. is very critical.

thanks
Aanand

Guest · May 17, 2007

AaAnand, thanks for the follow up. However, when I unchecked "use default
gateway" my problem was solved.

Thanks again.

Aanand Ramachandran · May 17, 2007

Hi Tony,
To summarize the steps. You were initially not able to access the internet.
You then checked the "use default gateway on remote network" option and were
able to access the net. You then unchecked this option but were still able
to access internet. Am i right?

thanks
Aanand

VPN (dialup) via satellite	3	Mar 18, 2007
Connecting to VPN stops Internet and Multiple Networks Issue	1	Jun 19, 2009
Automate adding a Route to a VPN connection	1	Feb 20, 2009
VPN Conection	1	Mar 7, 2008
remote desktop vpn complications	1	Oct 30, 2007
Cisco VPN on Vista not working anymore	7	Apr 17, 2008
VPN Help	5	May 4, 2007
Lose local network file access when connecting to VPN of a client	9	Jun 26, 2007

Browsing Internet While Connected To VPN

Guest

Robert L [MVP - Networking]

Guest

Robert L [MVP - Networking]

Guest

Rama Amaravadi [MSFT]

Guest

Guest

Guest

Aanand Ramachandran

Guest

Aanand Ramachandran

Ask a Question

Similar Threads