Solved

VPN Routing

Posted on 2004-05-01
10
858 Views
Last Modified: 2012-06-27
I have clicked the use vpn gateway for all traffic but for some reason when I connect the metric of both my local area connection and my vpn is set to 1.  The default gateway listed when I do "route print" from the command line is still the local gateway.

I have manually set the local area connection to a metric of 20.  That displays fine until I connect my vpn connection.  Then both gateways set a metric of 1.

I even tried the microsoft registry hack to manually move the binding adapters and route adapters to an order that puts the remote connections first.  This is after, of course, manually moving them in the advanced section of "network connections".

Below should read the default gateway as 10.6.150.77 which is the remote connection's local ip address but still shows the local area connection as the default not the vpn gateway.  Plus the metric of the lan connection should be higher than the vpn connection which it's not.

Here is the output:
===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x10003 ...00 09 6b 50 28 5c ...... Intel(R) PRO/100 VE Network Connection
0x20004 ...00 53 45 00 00 00 ...... WAN (PPP/SLIP) Interface
===========================================================================
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      10.6.150.77     10.6.150.77        1
          0.0.0.0          0.0.0.0      192.168.2.1    192.168.2.18        1
      10.6.150.77  255.255.255.255        127.0.0.1       127.0.0.1        50
   10.255.255.255  255.255.255.255      10.6.150.77     10.6.150.77        50
     67.65.42.193  255.255.255.255      192.168.2.1    192.168.2.18        1
        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1        1
      192.168.2.0    255.255.255.0     192.168.2.18    192.168.2.18        20
     192.168.2.18  255.255.255.255        127.0.0.1       127.0.0.1        20
    192.168.2.255  255.255.255.255     192.168.2.18    192.168.2.18        20
        224.0.0.0        240.0.0.0     192.168.2.18    192.168.2.18        20
        224.0.0.0        240.0.0.0      10.6.150.77     10.6.150.77        1
  255.255.255.255  255.255.255.255     192.168.2.18    192.168.2.18        1
Default Gateway:       192.168.2.1
===========================================================================
Persistent Routes:
  None

I did create a persistent route but my IP changes everytime I log into my vpn at work.

Any help would be greatly appreciated!
0
Comment
Question by:jasonslogan
  • 5
  • 4
10 Comments
 
LVL 21

Expert Comment

by:gemarti
ID: 10969871
Seems to me that when connecting to your Remote Access Server from your Private network (192.168.2.1) the machine behind the gateway making the connection via VPN would first have to go through 192.168.2.1 before it could establish a connection with your Rremote Access Server's gateway (10.6.150.77).

0
 
LVL 21

Expert Comment

by:gemarti
ID: 10969880
0
 
LVL 21

Expert Comment

by:gemarti
ID: 10969905
You can try using the command ROUTE ADD to add a route if necessary. Just look in the Help and SUpport Center for information / syntax.
0
Enterprise Mobility and BYOD For Dummies

Like “For Dummies” books, you can read this in whatever order you choose and learn about mobility and BYOD; and how to put a competitive mobile infrastructure in place. Developed for SMBs and large enterprises alike, you will find helpful use cases, planning, and implementation.

 
LVL 21

Expert Comment

by:gemarti
ID: 10969914
0
 
LVL 21

Accepted Solution

by:
gemarti earned 500 total points
ID: 10969949
This is probably rudimentary but it doesn't hurt to review:

HOW TO: Configure a VPN Connection to Your Corporate Network in Windows XP Professional
http://support.microsoft.com/default.aspx?scid=kb;EN-US;305550

SUMMARY
This step-by-step article describes how to configure a VPN connection to your corporate network in Windows XP Professional.

With the Point-to-Point Tunneling protocol (PPTP) or Layer Two Tunneling Protocol (L2TP) which are automatically installed on your Windows XP-based computer, you can securely access resources on a network by connecting to a remote-access server through the Internet or other network. The use of both private and public networks to create a network connection is called a virtual private network (VPN).

NOTE: In the following instructions, the user who is already connected to the Internet uses a VPN connection to dial the number for the remote-access server.

The information in this article applies to:
Microsoft Windows XP Professional
0
 
LVL 1

Author Comment

by:jasonslogan
ID: 10982842
Unfortunately none of these answers provided a long term solution.  The computer just wouldn't assign the appropriate metric to the gateway so the vpn's gateway would be default.

I already did the route add but it only provided a short term solution because once they connected later their ip changed.  And static ip's are not a solution in my case for a remote connection.

I think their is a problem with the way the Air Force sets up tcp/ip.  I've since formatted the laptop and installed xp fresh.  All is good now but it would have been great to get an answer.  It stumped me and a few of my felly IT friends as well.
0
 
LVL 1

Author Comment

by:jasonslogan
ID: 10982849
BTW I'm not sure what to do on answering the question.  This is the first time I've tried this service.  I paid for a whole year but haven't needed it until now.

Would anyone like to tell me how to proceed in making this question go away?
0
 
LVL 1

Author Comment

by:jasonslogan
ID: 10982863
Incidently to the first person who commented...

When you allow the remote connected gateway as your gateway then your ip address that you get when you log into the routing and remote access server becomes your new default gateway.  The routing table is changed so that all traffic goes through your remote server's connection.

Just in case anyone cares...

Thanks again, for commenting.
0
 
LVL 1

Author Comment

by:jasonslogan
ID: 11000097
Yes please, make it go away.
0

Featured Post

The Eight Noble Truths of Backup and Recovery

How can IT departments tackle the challenges of a Big Data world? This white paper provides a roadmap to success and helps companies ensure that all their data is safe and secure, no matter if it resides on-premise with physical or virtual machines or in the cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Can I legally transfer my OEM version of Windows to another PC?  (AKA - Can I put a new systemboard in my OEM PC?) Few of us are both IT and legal experts but we all have our own views of Microsoft's licensing rules and how they apply.  There are…
Ok I have been working on this for some time having learned and gained certification in XenDesktop 4 along came version 5 which was released last month. Since then I have been working to deploy XenDesktop 5 in a small environment with only 2 virt…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
Two types of users will appreciate AOMEI Backupper Pro: 1 - Those with PCIe drives (and haven't found cloning software that works on them). 2 - Those who want a fast clone of their boot drive (no re-boots needed) and it can clone your drive wh…

773 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question