Hello,
I am trying to setup a VPN connection from inside my network.
I'll give what is probably too much information, but hopefully that gives you a proper idea of my network
Starting from the outside.
I have a Linksys AG241 router which connects to my ISP (Internode). I have a static external IP address.
The router's IP address is 192.168.1.1.
The router directs all communication from ports 0 to 64,000 to 192.168.1.10.
I also have a test environment which is connected to the router. This goes out but nothing comes in to it. The test environment mirrors the production but is on the 10.1.20.* range.
I have an ISA Server with 2 NIC's.
1: 192.168.1.10. This connects to the router.
2: 10.1.10.1. This connects to the production network
The production network has server from 10.1.10.10 - 10.1.10.20.
Static clients from 10.1.10.40-10.1.10.100
VPN clients (external to internal) 10.1.10.101-10.1.10.120 (these work fine)
DHCP internal clients 10.1.10.150-10.1.10.200
The 2 machines I am attempting to establish a VPN connection on are static workstations:
10.1.10.41
10.1.10.42
I can connect to the VPN fine from a machine not behind ISA, so the VPN is fine externally, the issue is with my environment.
I have an access rule allowing all PPTP Client from Internal to External in my ISA 2006 firewall policies.
I need for clients to be able to VPN. From what I've read some routers don't have this problem. I've also read that it's due to a double NAT (one on the router and one in ISA).
My proposed solution
What I think I need to do is remove my NAT from the router. Get the test LAN to access the internet through the production ISA. Make the AG241 a simple modem.
What I'm looking for in an answer is:
Is there a better solution that what I've proposed? If so what is it and how can I do it?
If my proposed answer is right, can anyone step me through it? This is an area I'm new in and it's live. So fixing this is something I need to do with as little fiddling as possible.
Thanks a lot for your help
Start Free Trial
