VPN and .192 subnet mask

[Armando Méndez]

I have a Windows 2003 server running RAS/VPN/DHCP/DNS with 2 NIC's
with the following configuration:


NIC # 1

Local Area Network

Ip Address 192.168.54.190
Subnet mask 255.255.255.192
DNS 192.168.54.190


NIC # 2

Internet Connecion

Ip Address 189.164.250.181
Subnet mask 255.255.255.248
Gateway 192.168.250.180
DNS 189.164.250.181


My users connect succesfully to the VPN, but can't ping any of the local
network computers, a VPN client can only ping to NIC#1 and itself

Any clues?

Thanks in advance

 

[Kurt]

I have a Windows 2003 server running RAS/VPN/DHCP/DNS with 2 NIC's
with the following configuration:


NIC # 1

Local Area Network

Ip Address 192.168.54.190
Subnet mask 255.255.255.192
DNS 192.168.54.190


NIC # 2

Internet Connecion

Ip Address 189.164.250.181
Subnet mask 255.255.255.248
Gateway 192.168.250.180
DNS 189.164.250.181


My users connect succesfully to the VPN, but can't ping any of the local
network computers, a VPN client can only ping to NIC#1 and itself

Any clues?

Thanks in advance

First of all, although you didn't say whether or not your server is a
domain controller, it's at least bad form to use an offsite DNS server
if you need to resolve local DNS names. If you don't want your Windows
server looking up Internet addresses, specify a forwarder for your DNS
server instead of configuring two DNS servers in your client (TCP/IP
Properties). If your computer IS a domain controller, this is crucial to
the function of your domain.

That said, we're gonna need some more information.

1) PPTP VPN clients?

2) Where do they get their IP addresses? From your DHCP scope? Or did
you specify a static pool (I recommend a static pool outside yur DHCP
scope)?

3) What IP addresses are they getting? What subnet mask?

4) Are you trying to ping (from the VPN Client) by IP address or name?

Your subnet mask limits your subnet to IP addresses in the range of
192.168.54.129 - 192.168.54.190. Make sure your DHCP server (or static
pool) is giving out addresses in that range or open up your subnet mask.
Make sure your static pool doesn't include addresses in your DHCP scope
(or create an exclusion for that range).

....kurt

 

[Armando Méndez]

Hi Kurt:

Thanks for your comments

0) My server is a Domain Controller.
1) It is configured for both L2TP and PPTP VPN clients.
2) My DHCP server provides IP address in the following scope:
192.168.54.170 - 180 (not static pool), This is because I only need 3 VPN
clients.
3) Subnet mask 255.255.255.255, DNS 192.168.54.190
4) I'm trying to ping from my PPTP VPN Client by address

By the way, I can not change the 255.255.255.192 subnet mask.

------