Solved

Routing/VPN/Linux/General Networking Question

Posted on 2006-07-16
10
402 Views
Last Modified: 2010-03-19
I have a desktop at a remote location that connects to our main site via VPN.  The subnet for the main site is 192.168.32.xxx.  Once the VPN connection is established the remote desktop is assigned an IP on the same subnet of 192.168.32.xxx.  At the remote location, the desktop is connected to a switch and a DSL modem is connected to the same switch.  So the desktop also gets an internal IP address on the subnet of 172.16.64.xxx.  There is also a Linux-based timeclock system (www.timeips.com) that is also connected to the switch and it has a static IP of 172.16.64.50.  I want to get to that timeclock system without having to use Remote Desktop or VNC.  The timeclock system uses a web-based interface that you access by going to 172.16.64.50 in a Web browser.  Is there a way to get to that machine through the desktop which is connected via VPN?  Maybe through port forwarding in the DSL router/modem.  I would have to Remote Desktop or VNC in to the VPN-connected desktop to change the DSL router settings but I don't want to do.  Any ideas on how to get to the timeclock system (Linux-based probably running Apache and MySQL)?
0
Comment
Question by:mattwilson77
  • 3
  • 2
  • 2
  • +3
10 Comments
 
LVL 22

Expert Comment

by:rickhobbs
ID: 17119041
Without using a remote control client on the desktop, no. Unless you can locate a VPN that will run on the timeclock.  Why are you adverse to using Remote Desktop, VNC or similar on the desktop?
0
 

Author Comment

by:mattwilson77
ID: 17119240
Multiple accounts are setup on the desktop and it is undesirable to be calling the location and having them logout and login as different users.  This desktop belongs to an executive and they do not like to be disturbed.  There has to be a way to get to the linux timeclock box.
0
 
LVL 22

Expert Comment

by:rickhobbs
ID: 17119374
Other than putting another desktop over there in a closet without a montor or keyboard, I know of nothing.  Sorry
0
 
LVL 32

Accepted Solution

by:
rsivanandan earned 500 total points
ID: 17119474
1. If you have a DSL router instead of a modem where in it gives configuration options for port forwarding, then it is possible but that is not your case.

2. VPN in and Remote Desktop from the machine inside. Nothing else.

Cheers,
Rajesh
0
 
LVL 7

Expert Comment

by:nttranbao
ID: 17119916
Just like other ideas, there is NO way for you go access the linux box via VPN

One way to walk arround : acccess the linux webpage using https, and configure you adsl modem to open port for ssl(default 443)
0
Free Trending Threat Insights Every Day

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

 
LVL 43

Expert Comment

by:Steve Knight
ID: 17120571
I agree a router with VPN capability the other end would be much better but you might be able to get away with:

1. Add a static IP on the remote machine for the VPN connection instead of leaving it to get a DHCP one.

2. Add a static route on your machine.

route -p add 172.16.64.0 mask 255.255.255.0 172.16.32.

3. Add a static route on the linux machine for 172.16.32.0 via the VPN machine.

4. Turn on IP routing on the desktop machine.  This may help:
http://www.dragon-it.co.uk/files/w2k_routing.reg

Steve
0
 
LVL 6

Expert Comment

by:marce_lito
ID: 17123566
I completely agree with Steve... actually i might add that it SHOULD work unless you have some other issues (like the vpn firewall blocking packets coming from a 172.16.64.x address)...

i just think that he messed up the 192.168.32.0 network with the 172.16.32.0 one...
0
 
LVL 43

Expert Comment

by:Steve Knight
ID: 17125265
Hmm, yes slight lack of reading there.... to be fair I was using a PDA with a tiny screen at the time :-)  Principal remains the same though.

Steve
0
 

Author Comment

by:mattwilson77
ID: 17242477
I switched the user to Comcast and setup a wireless router.  I connected the Linux-based timeclock system directly to the router.  I then configured port forwarding for port 80 since the timeclock system's management software was web-based.  I figured that it was running Apache and was probably on port 80.  When I went to the external IP address it worked!  Thank for the help guys.

-Matt
0
 
LVL 43

Expert Comment

by:Steve Knight
ID: 17242589
I hope you've got that port firewalled off to your specific IP address otherwisedon't forget  it will be wide open to the world and likely to be scanned and fiddled with in minutes...
0

Featured Post

How to improve team productivity

Quip adds documents, spreadsheets, and tasklists to your Slack experience
- Elevate ideas to Quip docs
- Share Quip docs in Slack
- Get notified of changes to your docs
- Available on iOS/Android/Desktop/Web
- Online/Offline

Join & Write a Comment

Hi All,  Recently I have installed and configured a Sonicwall NS220 in the network as a firewall and Internet access gateway. All was working fine until users started reporting that they cannot use the Cisco VPN client to connect to the customer'…
Short answer to this question: there is no effective WiFi manager in iOS devices as seen in Windows WiFi or Macbook OSx WiFi management, but this article will try and provide some amicable solutions to better suite your needs.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

760 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now