Solved

Is Double VPN connection with XP client, Win2003 VPN server possible?

Posted on 2006-07-10
8
460 Views
Last Modified: 2012-06-21
We have a commercial program that downloads licenses from a license server.  We want to use this program from home by connecting to our company VPN server, but the ip addresses the company hands out don't work because the program only responds to license requests from ip addresses on the same subnet.  Unfortunately we aren't able to 'play' with the company VPN server.  
However, we have a second VPN server that we do control running on Windows2003.  We can't connect to our Win2003 VPN from home unless already connected to the company VPN (due to perimeter firewall).  Therefore, I think the remote user will need to make 2 VPN connections, 1 to the company VPN and then 1 more connection to our Win2003 VPN.  The second connection depends on the first connection.  Is this even possible?  Also, how to insure with a Windows XP laptop that it sends all packets out the interface of the second VPN connection?  Do you need to do route print on XP to view and modify the routing table?

We tried the double VPN connection but the XP laptop still couldn't get a license.  I think the problem is probably that it's sending the license request out the first VPN connection's interface.  It also may be that you can't have a double VPN connection when 1 connection depends on the other(not sure if Windows is smart enough to handle this, or if its even possible)

Let me know if you need more info.
Thanks for the help!
0
Comment
Question by:ShannonE
  • 3
  • 3
8 Comments
 
LVL 4

Author Comment

by:ShannonE
ID: 17073343
It seems like for a double VPN connection, XP would have to create a packet using the ip address of the second connection, and encapsulate that packet in another packet using the ip address of the first VPN connection.  That's why I said I don't know if Windows is smart enough to do this
0
 
LVL 51

Expert Comment

by:Netman66
ID: 17073418
The primary VPN server can be adjusted to hand out addresses from a "pool" which can be configured as local addresses rather than a different subnet.

You'll need to make this point to the people managing the VPN server so they can accommodate you otherwise you may find this next to impossible.

0
 
LVL 4

Author Comment

by:ShannonE
ID: 17073639
Due to company policies(politics) touching the primary VPN is not an option.  However, for the primary VPN connection, instead of getting it from a 'pool', can you right-click the VPN connection->Properties->Networking tab->Internet Protocol(TCP/IP)->Properties and change it from DHCP mode to a static ip address on the same subnet as the license server, thereby eliminating the need for the second VPN connection?
0
What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

 
LVL 51

Expert Comment

by:Netman66
ID: 17073980
You can try, but you would need to make an exclusion for the IPs you will use so it doesn't conflict with addresses that may be given out.

You'll have to test this.

0
 
LVL 4

Author Comment

by:ShannonE
ID: 17086206
I've got someone working from home tomorrow so we're going to try a few things.  Just wondering though why you say the double VPN setup is 'next to impossible'.  Do you know anyone who has tried it?
0
 
LVL 51

Accepted Solution

by:
Netman66 earned 500 total points
ID: 17086651
How do you intend to use VPN twice?  From the client to the first server then how would you VPN the second time?  This would very likely require split tunnelling even if you could manage it and that would be a routing nightmare.

0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
can we install sql server 2008 r2 service pack2 on windows server 2003 r2 standard edition r2 32 bit 5 76
idle mapped drive 10 51
Backup DHCP Server 8 94
shadow copies 7 69
Preface Having the need * to contact many different companies with different infrastructures * do remote maintenance in their network required us to implement a more flexible routing solution. As RAS, PPTP, L2TP and VPN Client connections are no…
by Batuhan Cetin Within the dynamic life of an IT administrator, we hold many information in our minds like user names, passwords, IDs, phone numbers, incomes, service tags, bills and the order from our wives to buy milk when coming back to home.…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Migrating to Microsoft Office 365 is becoming increasingly popular for organizations both large and small. If you have made the leap to Microsoft’s cloud platform, you know that you will need to create a corporate email signature for your Office 365…

910 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

22 Experts available now in Live!

Get 1:1 Help Now