Site to Site VPN Problems

G

Guest

I'm having some major problems with a site to site vpn. I was able to
successfully set up demand dial connections in both sites and sucessfully
connected. For some reason I can't ping another workstation across sites. I
setup a child domain server on the main site and brought it to the branch
site to be used as the network bridgehead. If I ping from the rras server
itself, I can ping both the Internal address and both demand dial
connections, but it won't ping the internal address of the other router
across the connection. If I try to ping from a workstation, the only thing I
can ping is the ip address of the demand dial connection. Do you think it
could be something to do with the fact that I actually setup the network with
a class B ip addresses. In theory it should all be "one" network . I didn't
use any subnets. One network starts with 172.16.31.x and the other one
starts wtih 172.16.20.x both with a netmask of 255.255.0.0. Please help!!!
 
G

Gaylen Michael

Are you using ISA? If so, I had this same problem until I setup an access
rule allowing for traffic to pass over the VPN.
 
G

Guest

No. I'm just using the standard routing and remote access that came with the
server.

Ryan
 
R

Robert L [MS-MVP]

Sounds like routing issue. Posting the results of both server routing tables here may help.

Bob Lin, MS-MVP, MCSE & CNE
Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
I'm having some major problems with a site to site vpn. I was able to
successfully set up demand dial connections in both sites and sucessfully
connected. For some reason I can't ping another workstation across sites. I
setup a child domain server on the main site and brought it to the branch
site to be used as the network bridgehead. If I ping from the rras server
itself, I can ping both the Internal address and both demand dial
connections, but it won't ping the internal address of the other router
across the connection. If I try to ping from a workstation, the only thing I
can ping is the ip address of the demand dial connection. Do you think it
could be something to do with the fact that I actually setup the network with
a class B ip addresses. In theory it should all be "one" network . I didn't
use any subnets. One network starts with 172.16.31.x and the other one
starts wtih 172.16.20.x both with a netmask of 255.255.0.0. Please help!!!
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Problems after creating site-to-site VPN in RRAS 3
RAS site to site vpn User Authentication 7
VPN site-to-site routing 3
Site To Site VPN DNS Setup 6
how to Site to Site VPN behide firwall? 3
site to site vpn using rras - routing problems. 3
Site-to-Site VPN 0
VPN connects, Unable to ping anything but the VPN server 7

Top