VPN, default gateway, etc.
Vizo
Is there a way that you can setup a VPN, and ping and connect to the PC's
other than the VPN server (using the LAN's DNS, preferably) and at the same
time not loose net connectivity?
If I disable "use default gateway, etc" I cannot connect to the resources on
the private LAN, otherwise I loose my DNS and gateway settings.
Thanks for answers
Bill Grant
What you say is correct. The default connection (ie with "use default
gateway etc" set) disables the default route to the Internet and adds a
default route to the tunnel server, so you see the private LAN but not the
Internet. If you clear the "use default etc" the default route to the
Internet remains but the default route to the LAN is not created, so you
can see the Internet but not the LAN
To have access to the Internet and the LAN you use the second option to
keep your Internet connection and add persistent static routes for the LAN
resources you need to access. These routes use the IP of theVPN server's
virtual interface as the gateway address. Full details are available in the
W2000 resource kit VPN chapter. If you don't have this the VPN chapter is
available at
www.microsoft.com/windows2000/library/resources/reskit/samplechapters
Vizo <vi...@turk.net> wrote in message news:#PcQw5bBAHA.270@cppssbbsa04...
Vizo
I read that chapter,(after posting the question) but could not add
persistent routes. Also I was not able to use RIP to get broadcasted route
information.
A question:
In adding persistent route with the "route add" command shall I input the IP
of the PC I am using between the ADD and MASK commands?
"Bill Grant" <bill_...@bigpond.com> wrote in message
news:uCgjs#dBAHA.243@cppssbbsa05...
Bill Grant
route add -p <network address> mask <netmask> <gateway address>
where -p is the parameter to specify a persistent route
<network address> is the network you want to reach
<netmask> is the subnet mask to use with that address
<gateway address> is the next hop to the destination
For example to set up a persistent route to subnet 192.168.1.0 (in your case
use your private LAN address here) using subnet mask 255.255.255.0 through
gateway 192.168.0.4 you would use
route add -p 192.168.1.0 mask 255.255.255.0 192.168.0.4
I am not sure how RIP got in to this conversation. RIP is only used to
exchange route information between routers.
Make sure you are using the correct IP for the gateway address as
explained in the reskit chapter.
Vizo <vi...@turk.net> wrote in message
news:#1PZiSgB...@cppssbbsa02.microsoft.com...
Vizo
I created a persistent route to my gateway at 10.10.0.1 with route add -p
10.0.0.0 255.0.0.0 10.10.0.1, and I can see it with route print command.
However when VPN is active, it doesnot have any effect, and my intranet
connectivity is gone. So is my internet connectivity, since I connect to the
internet thru this gateway. So it is either VPN or internet here.
"Bill Grant" <bill_...@bigpond.com> wrote in message
news:#aqz15nBAHA.244@cppssbbsa05...
Bill Grant
You don't seem to have read the details very carefully. You are trying to
route the traffic going to the private network through the tunnel. The
default route must point to the tunnel address which the article calls the
VPN virtual interface. To find out what this is double-click the VPN
connectoid icon while the VPN is active and select Details. Or look in IP
Routing - General of the RRAS snap-in of the MMC.
Vizo <vi...@turk.net> wrote in message
news:#kEUS9oB...@cppssbbsa02.microsoft.com...
> Thanks Bill,
>
> I created a persistent route to my gateway at 10.10.0.1 with route add -p
> 10.0.0.0 255.0.0.0 10.10.0.1, and I can see it with route print command.
>
> However when VPN is active, it doesnot have any effect, and my intranet
> connectivity is gone. So is my internet connectivity, since I connect to
the
> internet thru this gateway. So it is either VPN or internet here.
>
> "Bill Grant" <bill_...@bigpond.com> wrote in message
> news:#aqz15nBAHA.244@cppssbbsa05...
Vizo
1-I belong to an intranet 10.0.0.0, of which 10.10.0.1 is the gateway to the
internet through NAT. I get reserved ip 10.0.0.25 from the DHCP server. The
DNS server on the 10.10.0.1 use the ISP's DNS's as forwarders.
2-From this connection, I use a VPN connection to another LAN with a
192.168.x.x subnet. That remote LAN is on a cable modem connection to the
internet.
3- When I connect the VPN, I also get an IP from that cable modem
connection's subnet with the default gateway being that dynamic IP. So now I
am on two different private networks.
4- When I use route print, I see the VPN gateway as the main gateway, and
also see the persistent route to my local LAN.
5- In this situation, my internet connectivity is gone (apart from the VPN,
of course). I cannot connect to any site, use e-mail or have any dns
resolution or pinging ability.
6- Any more help?
Thanks.
"Bill Grant" <bill_...@bigpond.com> wrote in message
news:es36#8qBAHA.243@cppssbbsa05...
> You don't seem to have read the details very carefully. You are trying to
> route the traffic going to the private network through the tunnel. The
> default route must point to the tunnel address which the article calls the
> VPN virtual interface. To find out what this is double-click the VPN
> connectoid icon while the VPN is active and select Details. Or look in IP
> Routing - General of the RRAS snap-in of the MMC.
>
> Vizo <vi...@turk.net> wrote in message
> news:#kEUS9oB...@cppssbbsa02.microsoft.com...
> > Thanks Bill,
> >
> > I created a persistent route to my gateway at 10.10.0.1 with route
add -p
> > 10.0.0.0 255.0.0.0 10.10.0.1, and I can see it with route print command.
> >
> > However when VPN is active, it doesnot have any effect, and my intranet
> > connectivity is gone. So is my internet connectivity, since I connect to
> the
> > internet thru this gateway. So it is either VPN or internet here.
> >
> > "Bill Grant" <bill_...@bigpond.com> wrote in message
> > news:#aqz15nBAHA.244@cppssbbsa05...