New PPTP VPN, and questions

J

James W. Long

Hi All,

my lan on 10.0.0.x
vpn server on 10.0.0.150
and 69.14.x..x

I set up a pptp vpn server and it works but there are some problems.

I set up vpn on an outside IP on an outside nic, a 69.14.x.x address.
I then set up an address pool as 192.168.1.50 for 10 addresses.
I have a second nic which has an inside address of 10.0.0.150.
dns runs on that nic.
the only gateway defined is the one on the outside card.
the vpn server gets internet. (unless I enable the vpn filters )

the vpn server took 192.168.1.50 as its address,
so my first client is 192.168.1.51,
my second as 192.168.1.52,
and so on.

I had to turn off the filters to get it to work,???
these all appear to be micorosoft public autoconfig dhcp address,
when they are on, I cant get in.
the destination address specified there doesnt match anything Im doing.
how should I set those back up?

when I connect,
I can ping the vpn server at 192.168.1.50.
I cant see shares shared to me on the vpn server.
I cant see \\192.168.1.50\c$ on the vpn server.
I cant see anything in my network places

I want to route the vpn into my 10 subnet,
so that a vpn client can see my network,
as if he was connected locally.
I do not know how to set up the static routes
in rras to do that or what else I have to do.

any pointers

Thank you in advance,
James W. Long
 
R

Robert L [MS-MVP]

posting the routing table here may help.

--
For more and other information, go to http://www.ChicagoTech.net

Don't send e-mail or reply to me except you need consulting services.
Posting on MS newsgroup will benefit all readers and you may get more help.

Bob Lin, MS-MVP, MCSE & CNE
Networking, Internet, Routing, VPN, Anti-Virus, Tips & Troubleshooting on
http://www.ChicagoTech.net
Networking Solutions, http://www.chicagotech.net/networksolutions.htm
VPN Solutions, http://www.chicagotech.net/vpnsolutions.htm
VPN Process and Error Analysis, http://www.chicagotech.net/VPN process.htm
VPN Troubleshooting, http://www.chicagotech.net/vpn.htm
This posting is provided "AS IS" with no warranties.
 
B

Bill Grant

The first question is, why did you decide to use 192.168.1.0 when your
LAN is 10.0.0.0 ? Most people would just use the same IP subnet and let
RRAS look after it.

If the remotes and the LAN are in different IP subnets, you need to
enable IP routing on the RRAS server. The routing should then work as long
as the RRAS server is the default gateway for the LAN machines. If it is
not, you will need extra routing on the default router to redirect
192.168.1.x traffic to the RRAS server for delivery to the remote clients.
 
J

James W. Long

I posted it but it doesnt look like it made it,
I'll post again from home this eve.

btw, made changes to address pool at 10.0.0.x,

can now see stuff in network places, and even got shares
shared to a vpn client working,

but, need the client to show up in DNS, am not currently running
Wins, is that possible?? whay steps are necessary?

dns is ad integrated

Thanks
James W. Long
 
J

James W. Long

Thanks Bill,
I had good reasons for selection 192.168
because I want to vpn in 135 locations with 4 clients per location
and that would pretty much make me out of space in the 10.0.0.
subnet with mask of 255.255.255.0,

so thats why I went that way first.

subsequently I have opted for a different mask
like 255.255.0.0 or whatever.
 
J

James W. Long

Dear Robert:

I have a similar problem as another post here,

when I try to vpn out from behind a Pix 515E
I'm on a corp lan behind the pix on 10.0.0.x
I allowed tcp port 1723 on the pix
and IP protocol 47 (GRE) on the pix

The connectoid connects to my vpn,
but doesnt let me in,
I get error 721.

what am I missing?

Thank you,
James W. Long
 
R

Robert L [MS-MVP]

it is better to install WINS. if you use Cisco pix, you can assign dns and
wins to the vpn clients.

--
For more and other information, go to http://www.ChicagoTech.net

Don't send e-mail or reply to me except you need consulting services.
Posting on MS newsgroup will benefit all readers and you may get more help.

Bob Lin, MS-MVP, MCSE & CNE
Networking, Internet, Routing, VPN, Anti-Virus, Tips & Troubleshooting on
http://www.ChicagoTech.net
Networking Solutions, http://www.chicagotech.net/networksolutions.htm
VPN Solutions, http://www.chicagotech.net/vpnsolutions.htm
VPN Process and Error Analysis, http://www.chicagotech.net/VPN process.htm
VPN Troubleshooting, http://www.chicagotech.net/vpn.htm
This posting is provided "AS IS" with no warranties.
 
R

Robert L [MS-MVP]

this link may help. VPN Process and Error Analysis,
http://www.chicagotech.net/VPN process.htm

--
For more and other information, go to http://www.ChicagoTech.net

Don't send e-mail or reply to me except you need consulting services.
Posting on MS newsgroup will benefit all readers and you may get more help.

Bob Lin, MS-MVP, MCSE & CNE
Networking, Internet, Routing, VPN, Anti-Virus, Tips & Troubleshooting on
http://www.ChicagoTech.net
Networking Solutions, http://www.chicagotech.net/networksolutions.htm
VPN Solutions, http://www.chicagotech.net/vpnsolutions.htm
VPN Process and Error Analysis, http://www.chicagotech.net/VPN process.htm
VPN Troubleshooting, http://www.chicagotech.net/vpn.htm
This posting is provided "AS IS" with no warranties.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

VPN server without domain controller 0
Routing problem on Microsoft RAS VPN 0
PPTP VPN 3
VPN Server - 1 NIC vs 2 NIC 9
VPN Routing Problems...Cannot route from server side to client sid 3
VPN and .192 subnet mask 2
RRAS - PPTP server replying on private NIC? 1
PPTP behind Cisco 2821 - help! 0

Top