Remove From My Forums

Routing and Remote Access - VPN Connection dropping Internet

Question
0

Sign in to vote

Hi Folks,

I've recently built up a 2008R2 server with RRAS. Whenever clients connect they drop internet connection. The solution is to go into the advanced network settings of the VPN adapter and disable 'use default gateway on remote network'. Is there a way for me to do this server side?

Thanks!

Wednesday, October 26, 2011 3:38 PM

Answers

0

Sign in to vote
No, not really, unless you can create possibly a script with a route command using netsh or directly:

You Cannot Connect to the Internet After You Connect to a VPN Server
http://support.microsoft.com/kb/317025

VPN Connections and Default Gateways
http://stevenharman.net/blog/archive/2007/01/26/VPN_Connections_and_Default_Gateways.aspx

Or using CMAK to create a VPN connection installation connectoid the users can use to create a VPN that has that setting already disabled.

Connection Manager Administration Kit:
http://technet.microsoft.com/en-us/library/cc739464(WS.10).aspx

Using the CMAK wizard to build a service profile: Connection Manager
http://technet.microsoft.com/en-us/library/cc783508(v=ws.10).aspx

Ace Fekay
MVP, MCT, MCITP EA, MCTS Windows 2008 & Exchange 2007 & Exchange 2010, Exchange 2010 Enterprise Administrator, MCSE & MCSA 2003/2000, MCSA Messaging 2003
Microsoft Certified Trainer
Microsoft MVP - Directory Services
Complete List of Technical Blogs: http://www.delawarecountycomputerconsulting.com/technicalblogs.php

This posting is provided AS-IS with no warranties or guarantees and confers no rights.
- Marked as answer by Tiger LiMicrosoft employee Tuesday, November 1, 2011 8:00 AM
Wednesday, October 26, 2011 4:49 PM
0

Sign in to vote
Hi All,

Thanks for posting here.

Actually it is not hard to customize the VPN connection by CMAK and distribute the package to customers. This is also a recommended way :

How to configure split tunnelling on VPN clients using CMAK

http://blogs.technet.com/b/rrasblog/archive/2007/06/11/split-tunnelling-using-cmak.aspx

Thanks.

Tiger Li

Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.
- Edited by Tiger LiMicrosoft employee Thursday, October 27, 2011 9:44 AM
- Proposed as answer by Tiger LiMicrosoft employee Monday, October 31, 2011 7:54 AM
- Marked as answer by Tiger LiMicrosoft employee Tuesday, November 1, 2011 8:00 AM
Thursday, October 27, 2011 9:44 AM

All replies

0

Sign in to vote
No, not really, unless you can create possibly a script with a route command using netsh or directly:

You Cannot Connect to the Internet After You Connect to a VPN Server
http://support.microsoft.com/kb/317025

VPN Connections and Default Gateways
http://stevenharman.net/blog/archive/2007/01/26/VPN_Connections_and_Default_Gateways.aspx

Or using CMAK to create a VPN connection installation connectoid the users can use to create a VPN that has that setting already disabled.

Connection Manager Administration Kit:
http://technet.microsoft.com/en-us/library/cc739464(WS.10).aspx

Using the CMAK wizard to build a service profile: Connection Manager
http://technet.microsoft.com/en-us/library/cc783508(v=ws.10).aspx

Ace Fekay
MVP, MCT, MCITP EA, MCTS Windows 2008 & Exchange 2007 & Exchange 2010, Exchange 2010 Enterprise Administrator, MCSE & MCSA 2003/2000, MCSA Messaging 2003
Microsoft Certified Trainer
Microsoft MVP - Directory Services
Complete List of Technical Blogs: http://www.delawarecountycomputerconsulting.com/technicalblogs.php

This posting is provided AS-IS with no warranties or guarantees and confers no rights.
- Marked as answer by Tiger LiMicrosoft employee Tuesday, November 1, 2011 8:00 AM
Wednesday, October 26, 2011 4:49 PM
0

Sign in to vote

Thanks for the quick response, Ace. That's what I was afraid of, having to manually tweak all kinds of clients, some of which are mobile users that are rarely in the office.

Wednesday, October 26, 2011 5:29 PM
0

Sign in to vote

I was looking around to see if tehre was a reg setting, but I couldn't find anything, unless someone else has some better luck, or if Tiger can look into it. If not, the best bet is to create a CMAK connectoid and email it out to everyone.
Ace Fekay
MVP, MCT, MCITP EA, MCTS Windows 2008 & Exchange 2007 & Exchange 2010, Exchange 2010 Enterprise Administrator, MCSE & MCSA 2003/2000, MCSA Messaging 2003
Microsoft Certified Trainer
Microsoft MVP - Directory Services
Complete List of Technical Blogs: http://www.delawarecountycomputerconsulting.com/technicalblogs.php

This posting is provided AS-IS with no warranties or guarantees and confers no rights.

Wednesday, October 26, 2011 10:22 PM
0

Sign in to vote
Hi All,

Thanks for posting here.

Actually it is not hard to customize the VPN connection by CMAK and distribute the package to customers. This is also a recommended way :

How to configure split tunnelling on VPN clients using CMAK

http://blogs.technet.com/b/rrasblog/archive/2007/06/11/split-tunnelling-using-cmak.aspx

Thanks.

Tiger Li

Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.
- Edited by Tiger LiMicrosoft employee Thursday, October 27, 2011 9:44 AM
- Proposed as answer by Tiger LiMicrosoft employee Monday, October 31, 2011 7:54 AM
- Marked as answer by Tiger LiMicrosoft employee Tuesday, November 1, 2011 8:00 AM
Thursday, October 27, 2011 9:44 AM

Products

Resources

Solutions

Updates

Trials

Related Sites

Training

Certifications

Other resources

Support options

More support

Not an IT pro?

Answered by:

Routing and Remote Access - VPN Connection dropping Internet

Question

Answers

All replies