Solved

VPN windows 2003 with routeable IP address

Posted on 2006-06-28
3
233 Views
Last Modified: 2010-03-19
Hi!

the situation is as follows: I have a Windows 2003 server running which is connected to the internet. I have 4 (real) external IP addresses available on that machine. Two of which I am using for web sites. The other 2 I would like to be able to assign to VPN clients. I am having trouble to find the right settings to accomplish this.

I am using x.y.z.132 and x.y.z.133 for websites and a DHCP + RAS server. I would like to assign the x.y.z.28 and x.y.z.29 addresses to incoming VPN clients. The first problem I am having now is that the VPN server assigns itsself one of those (.28 or .29) addresses, leaving only 1 IP available for a VPN client. I would much rather have the VPN server use the .132 (or .133) address for itsself.

The other problem is that when the VPN clients gets the remaining address, it is not fully routeable. I mean that I would like someone on the internet to be able to connect to that address through my VPN server and have a connection to the VPN client.

Can anybody help me find the correct settings?

regards,

fax
0
Comment
Question by:fax
3 Comments
 
LVL 9

Accepted Solution

by:
NYtechGuy earned 500 total points
ID: 17003570
fax-

This isn't possible.  They aren't routable because they are *ONLY* routable on your network.

The clients connecting from a remote location ALREADY have a valid external IP, as they are connecting over the internet to your VPN server.  Your IP address(es) are workable ONLY for your network, and theirs only work on their network.  

An IP address is not portable, it is dictated by the network to which you are connected.

All VPNs I have seen issue dynamic "private" addresses - 192.x.x.x, etc

/Justin
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question