Solved

how to allow a VPN connection to work the exact same way as a dial-up RAS connection (have the remote access server do routing)?

Posted on 2004-04-30
5
220 Views
Last Modified: 2010-05-18
i want to be able to dial up to an ISP from a workstation when i'm away from home, and initiate a VPN to my home win2k3 server and then have that server become the remote access server and route all internet traffic for the workstation as well as have the ability to access the local shares on the win2k3 server

at the moment, i've worked out the actual VPN.  the VPN works w/o any issue, and i am able to access the local shares on the win2k3 server, but beyond that, i can't do anything.  i'd like to browse the net as well.  i know i can choose not to use the remote server's gateway, but i don't want to do it that way.  i want all traffic to pass through the win2k3 server.

this has a lot of diagrams.  i hope they better explain what i want to do.

1. workstation----->-----ISP------>-----*internet*

so i connect to the VPN and it becomes like this, physically:

2.
workstation-->--ISP-->--*internet*-->--router-->--*lan1*---firewall-->--*lan2*---win2k3

logically, it'll be (and it is):

3. workstation----(vpn)---->-----win2k3

but this is what i want it to do:

4. workstation----(vpn)---->------win2k3----->-----*internet*

so here, the ISP and the win2k3 server are both behave the same way... as
the RAS to connect to the internet :)

right now, to expand a bit on 3.

it's like this:

workstation----(vpn)---->-----win2k3---->*lan*

i want it to do both the lan and internet/wan bit.

workstation----(vpn)---->-----win2k3---->*lan*
                                                    ----->*wan/internet*

i want it to do this (sumarized):

(incoming traffic)-------> /VPN NIC/win2k3\primary NIC\ ---------->(outgoing traffic)

i hope i didn't overdo it with the diagrams. :)
0
Comment
Question by:xyyz
  • 2
5 Comments
 
LVL 11

Expert Comment

by:ewtaylor
ID: 10960889
So you have use remote gateway checked and what happens? Do you get no name resolution or no routing? If you try and ping www.cisco.com does it return? I would say that if the use remote gateway is configured, and you are not getting any name resolution it must be a dns issue.
0
 

Author Comment

by:xyyz
ID: 10969205
when i try that, nothing happens (pinging both cisco.com or an ip address_.  i have access to the intranet but not the internet.

i went out and bought the VPN book by microsoft press.  in it on page 87, they mention what i want to do:

"Select the Use Fefault Gateway On Remote Network check box (the default setting) and allow Internet access through the organization intranet.  Internet traffic between the VPN client and the Interent hosts would pass through firewalls or prox servers as if the VPN client is physically connected to the organization intranet.  Although this has an impact on performance, this method allows Internet access to be filtered and monitored according to the organization's network policies while the VPN client is connected to the organization network."

i have absolutely no idea about how to accomplish this.

any more hints?

0
 
LVL 11

Accepted Solution

by:
ewtaylor earned 250 total points
ID: 10981604
0

Featured Post

Active Directory Webinar

We all know we need to protect and secure our privileges, but where to start? Join Experts Exchange and ManageEngine on Tuesday, April 11, 2017 10:00 AM PDT to learn how to track and secure privileged users in Active Directory.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Sometimes, you want your microsoft VPN to route all the traffic to the remote network. Usually your employer network. This makes it possible to access all the nodes inside this remote LAN, even if they have no "public DNS" entries. To do so, you wo…
If you use NetMotion Mobility on your PC and plan to upgrade to Windows 10, it may not work unless you take these steps.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

828 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question