Please see the attached picture, it explains a lot.
I have a Win2K3 R2 server, RAS is set up. To simplify my needs, I have neglected that fact that there are multiple watchguards at 2 other offices.
The VPN's are set correctly, if I can get through this hurdle, I'll look like a hero!!!!
Okay, to the question. I have a WinXP box (10.0.0.x) connected to the Watchguard firewall. In addition, the Win2K3 server is connected to the Watchguard with 10.0.0.125. The Win2K3 server also has a network card 10.0.1.3, which servers the local LAN network.
RAS is enabled, so some routing is enabled. Let's look at that first.
From a computer on the local LAN (10.0.1.x), I can ping 10.0.1.3, 10.0.0.125, 10.0.0.1 (the watchguard router) and 10.0.0.x (computers connected to the watchguard) and 10.0.2.x ( computers connected through the Watchguard connected VPN)
From a computer on the 10.0.0.x network, I can ping 10.0.0.125, 10.0.0.1 and other addresses connected through the VPN (10.0.2.x). However, I cannot ping 10.0.1.3 or any address on the 10.0.1.x network.
My goal, to ping 10.0.1.3 from 10.0.0.x. Once I ping, I want to be able to gain some server items such as user account information (profiles), shared drives and printers.
A. Is this obtainable.
B. If it is, what is the best way to handle it without a full compromise to security.
The overall objective is to have two servers, one each at two remote sites and perform replications (AD and file) for a system which is robust for these users.
I obviously think my issue is in RAS, but I could be completely wrong.
Start Free Trial
