Cannot see LAN once RRAS is configured

M

Matthew Hansel

Once I configured RRAS on a server, the internal users could not see
the LAN. But, we could connect via the VPN and that was fine, or we
could connect via Citrix/RDP from outside. The server has two NIC's,
but I don't need the server to handle routing - as we have a router
with NAT enabled. What would be the best solution for this? The LAN
users and the external users are all running Citrix / RDP, but we need
the VPN for some other developmental things we are working with. How
do we best proceed with this scenario?

Matt
 
R

Robert L [MS-MVP]

quoted from http://www.ChicagoTech.net
Can't access the internal server when remote client establishes VPN

Symptoms: Two offices are connected using a vpn. Both offices run W2K
servers, RAS & TS. When office A connects to Office B you can not connect to
office A from anywhere except from office B. You can not connect using TS,
or a vpn connection. In order to gain access to office A, you have to
connect to office B, disconnect the client in RAS, then you can connect to
office A.

Resolution: When establishing VPN to the office A, the routing table
changes. To fix this issue, disabl the "Use default gateway" on the Office A
VPN server.
--
For more and other information, go to http://www.ChicagoTech.net


Don't send e-mail or reply to me except you need consulting services.
Posting on MS newsgroup will benefit all readers and you may get more help.

Robert Lin, MS-MVP, MCSE & CNE
Networking, Internet, Routing, VPN, Anti-Virus, Tips & Troubleshooting on
http://www.ChicagoTech.net
This posting is provided "AS IS" with no warranties.
 
B

Bill Grant

Exactly how did you configure the RRAS server? If it is on a private LAN
behind a router, you do not need two NICs. If you do have two NICs, they
must be in different subnets.

The simplest solution is to configure the server as a remote access
server with one NIC. Check that the config works by connecting locally from
another LAN machine. When this works, forward tcp port 1723 from the router
to the RRAS server and try to connect to the router's public IP from the
Internet. If you get an error 721, check that the router is not blocking GRE
(IP protocol 47).
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

VPN and LAN conflicts 13
RRAS Problem 4
RRAS, NAT & External VPN Problem 3
VPN access to LAN using RRAS on W2K *behind* firewall? 6
RRAS as VPN Server Configuration Questions... 8
RRAS as VPN Server Configuration Questions... New one... 3
VPN with RRAS behind a cisco 1760 router 9
Setting up RRAS through a firewall 2

Top