Solved

being on the domain while on a vpn

Posted on 2006-06-28
13
631 Views
Last Modified: 2008-02-01
My network uses the program centricity.  It is a medical records program.  While on the network, the address to get to it is

http://server1/centricitypm

Well, when I connect from my vpn at home and go to this address, I can't get to it?  Do I need to add my computer at home to the domain while connected to vpn when to make this work?
0
Comment
Question by:americanmobile
  • 3
  • 3
  • 2
  • +2
13 Comments
 
LVL 12

Accepted Solution

by:
r_naren22atyahoo earned 500 total points
ID: 17006683
sometimes NETBIOS name i.e. Server1 will not work.
You have have to use the FQDN i.e like server1.domainname.local etc.

or the easy way is the ip address of the server1 i.e
http://server1ipaddress/centricitypm
example:   http://192.168.0.15/centricitypm

regards
naren
0
 
LVL 44

Expert Comment

by:scrathcyboy
ID: 17006890
No, you cannot get to an unsecured website while you are connected to a VPN.  It is a fundamental violation of security protocol, when you are connected to a secure connection like a VPN, the browser will not allow you to connect to an unsecured connection, like a basic web page.  If it did do this, someone could hack the connection and use the internet to get into your secure VPN and destroy it.
0
 
LVL 4

Expert Comment

by:gbirkemeier
ID: 17007028
Open the advanced IP settings under the VPN configuration. Make sure that the WINS server is set to the WINS server on the main network (if you don't know the ip of the WINS server try the IP of the server that handles DNS for the internal network). This will let net bios names work throught the VPN again.  When you connect through a VPN you are given an IP address that is outside of the subnet of the main network. net bios is not routable, so it wont cross over the router.
0
Surfing Is Meant To Be Done Outdoors

Featuring its rugged IP67 compliant exterior and delivering broad, fast, and reliable Wi-Fi coverage, the AP322 is the ideal solution for the outdoors. Manage this AP with either a Firebox as a gateway controller, or with the Wi-Fi Cloud for an expanded set of management features

 
LVL 44

Expert Comment

by:scrathcyboy
ID: 17360577
I disagree completely, sorry.  My answer is the correct one, this is a known security problem and the inability to browse insecure websites while on a VPN is by necessary design.  Check you background on this and you will see that mine is the only correct answer on this question, it is not a DNS issue, it is a necessary part of VPNing.
0
 
LVL 39

Expert Comment

by:redseatechnologies
ID: 17360590
I chose the other two as from experience, I KNOW that I can access internal company HTTP (unsecured) websites when connected to the VPN

You have stated that this is fundamentally impossible, which is a flawed statement.

In my experience with VPNs and all that surrounds them, WINS or FQDNs are most likely to blame for this issue - they cover the 2 options that are 99% of the time responsible for these issues.

I think you are confused with internal and external websites....

-red
0
 

Author Comment

by:americanmobile
ID: 17360595
Sorry I have not responded.  I think on this one all I had to do was add the ip address of the server to the hosts file to get the computer to connect to it while they were vpn'd to the network.  Hope this helps.  Thanks for all the responses..
0
 
LVL 39

Expert Comment

by:redseatechnologies
ID: 17360615
Hi americanmobile, thanks for returning

Thank you also for confirming that this was, as I suspected, a problem with name resolution (as initially proposed by r_naren22atyahoo)

Unfortunately, you appear to have selected an incorrect answer, I have requested that this question be re-opened so that you can correct it

http://www.experts-exchange.com/Community_Support/Q_21962379.html

This answer should be selected as the correct one -> http:#17006683

thanks

-red
0
 
LVL 12

Expert Comment

by:r_naren22atyahoo
ID: 17360806
Thanks for the correction Guys.

redseatechnologies, you have done a good job,
i am not saying this coz you have awarded the points to me.
You are trying to  select the answer that is most suitable to the problem the Author was experiancing.

scrathcyboy, i cant more argue with you on the security design,
However 1 main use of the VPN is to connect to the office network and work locally,

If security is the issue, then
We have to implement policies on the end user who iniciates the VPN connection
1 way is to use the Firewall VPN client, where you can push the policies to the end-user
which forces the end-user to work on only the VPN tunnel
and block the general internet traffic when working with VPN.
However when he wants to access the internet(unsecured sites or any sites) has to go via the Office Proxy and firewall through VPN

regards
Naren

0
 
LVL 39

Expert Comment

by:redseatechnologies
ID: 17360870
For further correspondence on this, could you all please post here

http://www.experts-exchange.com/Community_Support/Q_21962379.html

Thanks

-red
0
 

Author Comment

by:americanmobile
ID: 17391460
what is the correct answer?
0
 

Author Comment

by:americanmobile
ID: 17391478
the first answer is correct, however, you must add that name in the hosts file on the machine you are using to vpn to the network....thanks to everyone..
0

Featured Post

Now Available: Firebox Cloud for AWS and FireboxV

Firebox Cloud brings the protection of WatchGuard’s leading Firebox UTM appliances to public cloud environments. It enables organizations to extend their security perimeter to protect business-critical assets in Amazon Web Services (AWS).

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
I had an issue with InstallShield not being able to use Computer Browser service on Windows Server 2012. Here is the solution I found.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

756 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question