Cannot get to all ip address over VPN

D

Dan

I have set up a standard VPN server on Win 2003 so I can
connect to my office LAN. The internal IP addres of the
server is 192.168.3.200 - subnet 255.255.252.0.

When I connect from outside, I can get to ip numbers
192.168.3.x but not 192.168.0.x or 192.168.1.x etc

What am I doing wrong?

TIA,
Dan.
 
R

Robert L [MS-MVP]

this is routing issue. This may help. quoted from http://www.ChicagoTech.net
Can't access the Internet while using VPN

Symptom: after establishing a VPN connection, you may not be able to access
the Internet because the VPN takes over your existing connection and all
traffic to use the VPN default gateway on the remote network. The remote
network may not allow VPN clients to access the Internet via their gateway.

Resolutions:
1) If you don't need to access the entire VPN resources, disable the "use
default gateway on remote network" option in the properties of the VPN
connection. To do that, go to VPN
Connection->Properties->Network->TCP/IP->Properties->Advanced-, uncheck
"Use default gateway on Remote Network".
2) Edit route table manually if you know how to or check routing page on
this web site.
3) For the security reason, some firewall/routers like Cisco PIX do not
allow access the Internet after establishing the VPN and you cannot modify
the routing table. You may setup split-tunnel.
--
For more and other information, go to http://www.ChicagoTech.net


Don't send e-mail or reply to me except you need consulting services.
Posting on MS newsgroup will benefit all readers and you may get more help.

Robert Lin, MS-MVP, MCSE & CNE
Networking, Internet, Routing, VPN, Anti-Virus, Tips & Troubleshooting on
http://www.ChicagoTech.net
This posting is provided "AS IS" with no warranties.
 
B

Bill Grant

If you have a routed network, it is a good idea to put the remote clients
in their own subnet (using a static address pool) and enable IP routing on
the RRAS server. Then arrange the routing on your LAN so that all subnets
can reach the "remote" subnet through the RRAS router. The default "on
subnet" addresses are really only intended for a simple one subnet setup (to
allow sysadmins who don't understand IP routing to get a remote to access
the LAN). It uses proxy ARP to let the remote clients access LAN clients.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

VPN can't route to subnet 5
How to change the IP address to give to PPTP clients 1
Change IP Pool in RRAS 13
VPN clients getting the same IP address as internal machines 3
WK2 VPN: temporary 169.254.x.x IP address being assigned. 2
Win 2003 & ISA 2000 with VPN Clients 3
RRAS doesn't R 4
2K RRAS not routing for vpn clients 3

Top