?
Solved

How do I set a Route Add to allow a 2 VPN hop?

Posted on 2004-09-08
5
Medium Priority
?
286 Views
Last Modified: 2010-03-18
My company LAN has a hardware VPN connection to a remote LAN where we have several systems. I can access these systems from computers on the company LAN (PING, TELNET, FTP,...). I can also access the company's resources via a Win XP VPN connection over DSL while at home. However, I cannot access the systems on the remote LAN over my DSL VPN connection. I can use Remote Desktop Connection after I have VPN'd to my office to access the remote systems but I'd just as soon access then directly.

The IPs involved are:
    Company LAN = 10.0.x.x
    Remote Systems = 13.28.x.x
    My home LAN = 192.168.x.x with DSL gateway connected to the internet.

How do use Route Add 13.28.0.0 mask 255.255.?.? ?.?.?.? to allow me access to the remote systems from home?

Thanks,
Lp
0
Comment
Question by:lpollis
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 15

Expert Comment

by:adamdrayer
ID: 12013210
first get the internal ip address of the company lan's VPN server for the WinXP VPN. (I assume this is not the same hardware as the other VPN).  Call this IP address 10.0.x.y

Then add this to your computer:
route add 13.28.0.0 mask 255.255.0.0 10.0.x.y

if the company's VPN server that you connect to from the DSL is a windows computer, also check out Classless Static Routes DHCP Option
http://www.microsoft.com/technet/community/columns/cableguy/cg1003.mspx

using that, it will add this route to any computer that connects to it.
0
 

Author Comment

by:lpollis
ID: 12015596
Thank you. I tried your suggestion but I am still missing something. See below:
*************
C:\>route add 13.28.0.0 mask 255.255.0.0 10.0.0.250
The route addition failed: Either the interface index is wrong or the gateway does not lie on the same network as the interface. Check the IP Address Table for the machine.

Can you help further?
0
 
LVL 15

Accepted Solution

by:
adamdrayer earned 375 total points
ID: 12015795
ok.  you have to be connected to your Company's VPN.  It should then issue you a IP address through dhcp.  if you type "ipcofnig /all" you should see 2 network connections.  1 of them should be the VPN connection to your company.  In that case you would type the following:

route add 13.28.0.0 mask 255.255.0.0 10.0.0.250 IF 2

you can type "route print" to see exactly which interface is using 10.0.0.250 as a gateway.  That is the interface you want to specify when using this route.  You have to do this when you are connected, and you must do this everytime.
0
 

Author Comment

by:lpollis
ID: 12023447
Thank you. I finally got it to work. The result of the IPCONFIG/ALL showed that I was connected to 10.0.0.51. So the command:
    route add 13.28.0.0 mask 255.255.0.0 10.0.0.51
worked. I could not get the "if 2" to work; I'm not sure why. But, I can now TELNET to my remote systems without first having to log into REMOTE DESKTOP. Your solution helped me to find the right values to use in Route Add.
Thanks again,
Lp
0
 
LVL 15

Expert Comment

by:adamdrayer
ID: 12023494
glad i could help =)
0

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A brief overview to explain gateways, default gateways and static routes OR NO - you CANNOT have two default gateways on the same server, PC or other Windows-based network device. In simple terms a gateway is formed when a computer such as a serv…
This article is in response to a question (http://www.experts-exchange.com/Networking/Network_Management/Network_Analysis/Q_28230497.html) here at Experts Exchange. The Original Poster (OP) requires a utility that will accept a list of IP addresses …
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question