I Have Problem With Working VPN For Connect The Internet !!!
-
Tuesday, June 10, 2008 4:45 AMI Have a Server, And This Server Have Two Network Card.
This Server Is Connect To Internet From ADSL Modem. And This Modem ADSL Connect To One Network Card Server. And Another Network Card Server Is Connect To Intranet (Internal Network).
I Configure This Server To Routing And Remote Access. Client Can Connect To This Server From VPN But This Client Cannot Access The Internet.
In My Workplace Client Should Connect The Internet By Using VPN.
More Information Below :
Local Area Network 1 (Connect ADSL Modem) IP : 192.168.0.1
Local Area Network 2 (Connect Internal Network) IP : 192.168.0.2
Range Static Address For VPN Server Is : From 192.168.0.50 To 192.168.0.79 30 Client.
Client No Use DHCP Server For Assign Address IP And Client Use Manually Address IP. From 192.168.0.5 To 192.168.0.30
Please Help Me.
Thanks.- Moved by Alicia CalesMicrosoft Employee Tuesday, June 10, 2008 6:37 AM Posting in Networking Forum
All Replies
-
Tuesday, June 10, 2008 6:36 AMTaking a guess and moving your thread to: http://forums.technet.microsoft.com/en-US/winserverPN/threads/
I am not 100% sure if this is the right place for you but someone in that forum should be able to help you or point you in the right direction.
Thanks-
Alicia
Program Manager, Server and Tools Online Engineering Live Services Team -
Tuesday, June 10, 2008 7:18 AM
There are problems with that setup. The obvious one is that your server has both of its NICs in the same IP subnet. RRAS does not work if both interfaces are in the same subnet. You will need to reconfigure RRAS depending on how your LAN is configured.
How exactly does your network connect to the Internet? Do you have an ADSL router? DO you connect over a PPPoE connection? What is the default gateway address for the workstations?
You can do what you plan if the RRAS server is acting as the NAT router for your LAN. You simply add the RRAS internal interface (which is the one that the VPN client connectd to) as a private interface in NAT from the RRAS console. In this case the two NICs would not be in the same subnet.
If there is a separate device which is the default gateway for your LAN and it is doing NAT it will depend on how that device is set up whether the remote client can access the Internet or not. In that case your RRAS server would have only one NIC.
Bill- Proposed As Answer by Bill Grant Friday, June 20, 2008 4:57 AM
-
Tuesday, July 01, 2008 9:16 AMhello my friend
i ask a question in site and you answer me.
in your answer, you ask question from my question.
my server connect to internet with adsl router and connect PPPOE Connection and i can't find default gateway address.
please help me.
best regards.
Mohammad Abedi.
-
Thursday, July 03, 2008 5:18 AMI need to work out how your network is set up and what you want to happen.
1. The machines on your LAN connect to the Internet through the ADSL router. Is that correct?
2. You want to allow users to connect to your network from outside using VPN. Is that correct?
3. You are not running Active Directory and the server is not a DC. Correct?
You do not need to have two NICs in your server. A VPN server only needs two NICs if it is directly connected to the Internet. One NIC in in the LAN subnet and the other hs a public address. Your RRAS server is n ot connected to the Internet. Your Internet connection it through the ADSL router.
Remove or disable the second NIC in the server. Can you make a VPN connection the the server from a LAN client using its LAN IP? (VPN works fine over Ethernet). There is no point in trying to connect from the Internet until your server is configured correctly, and you can check that by connecting locally.
WHen that is working, you can think about making a connection from the Internet. The remote client cannot connect to your VPN server because it is on the LAN and has a private address. The remote client has to connect to the public IP of your ADSL router. You have to configure your router to forward the VPN traffic to the server on the LAN.
Bill -
Tuesday, July 08, 2008 6:53 AMhello bill
i want in my network, user can connect to internet from VPN connection.
user connect to server from VPN access and get internet on the computer.
server connect to internet from ADSL modem. this modem connect to internet from one line telephone and connect from LAN cable to my server.server is 2 Network Card. one card connect to ADSL Modem For Get Internet And Other Card Connect To My Network.
I install Windows 2003 Server And create domain for allow access user and create user.
User In My Network Can Connect To Server From VPN Connection But This User Can't Access To Internet.
I Want User Connect From VPN To Server And Get Internet.(Internet Sharing From VPN In Network)
-
Tuesday, July 08, 2008 9:40 AM This will never work while you have two NICs in the RRAS server which are in the same IP subnet. RRAS will not work like that. You must use different IP subnets for the LAN NIC of the server and the "public" side NIC.
If you want two NICs in the RRAS server you will need to put the LAN machines in their own IP subnet and make the RRAS server the default gateway for the LAN. You would then use the link from the ADSL router to the RRAS server like a DMZ network in its own IP subnet. eg
Internet
|
public IP
ADSL router
192.168.0.1
|
192.168.0.2 dg 192.168.0.1
RRAS
192.168.1.1 dg blank
|
LAN clients
192.168.1.x dg 192.168.1.1
Configure the RRAS router as a NAT router. You will need to change your settings to issue IP addresses in the 12.168.1.0/24 subnet for the remote users. You will also need to set the ADSL router to forward the VPN traffic to 192.168.0.2 (the RRAS router). You can then configure NAT in the RRAS router so that the internal interface is a private interface in NAT. This will allow the remotes to access the Internet.
Bill- Proposed As Answer by Lionel Pinkhard Thursday, July 31, 2008 7:32 AM
.png)
