ROUTE ADD Networking Help

Posted on 2006-10-30
Last Modified: 2008-03-10
I have a network that lives on 192.168.0.x.  Very standard stuff, gateway on .1, etc.

We need to create a VPN to another site (that has an subnet of 192.168.11.x)

We have 'split' our Internet connection.  The original router, which will be used for regular Internet usage will stay at

We have put in a new VPN router and that lives on the network 192.168.25.x (with the router itself being .1)

Each have their own external IP connecting to the Internet.

Both routers plug into the 24 port switch of the network.

I need to put in a route statement (all the workstations) so that all traffic destined for the .11.x network goes out the .25.1 gateway.

I am having some trouble, which I think is with the subnet mask (however, I am ready to be corrected).

Should I setup the subnet masks on each workstation to be and then have a

ROUTE ADD statement MASK

I am getting a variety of errors when I try this.

Also, what should the subnet of the VPN router be set to?

Help appreciated...


Question by:tnorman
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
LVL 14

Expert Comment

by:Juan Ocasio
ID: 17838913

Route add MASK 1
LVL 57

Expert Comment

ID: 17838959
You need to re-evalute you IP addressing.  If you use, then every IP address from through will be on the same subnet.  This means that 192.168.1.x will think it can talk directly to 192.168.11.x withOUT going through a router.

You seem to have 3 what I would guess are 3 unique subnets,,, and

If you want to route between the three, then you will need a router on each subnet that is connected to each of the other subnets, or one router that is connected to all three subnets.


Accepted Solution

risner_it earned 500 total points
ID: 17838988

i think your making this more complex than it needs to be. to simplify this you can do one of two things.

1-(in my opinion the best)Use the VPN Router as your main internet connection router also. Set your VPN router ip from the 25.X network back to the 0.X network after the vpn tunnel is estabblished when traffic from your network destined for the 11.X network hits your vpn router now at it will know to route it through the vpn tunnel.

This is typical of SMB type setups.

2-(option 2 sticks with your "split" internet connection) Configure your VPN router for and then create the vpn tunnel for the 11.X network and once its established.

Route add mask 1 to work stations.

and everything on network should have /24 subnet mask (

This is typical of corperate frame-relay connection setups.
What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.


Expert Comment

ID: 17839001
you need to either put the VPN router on the same subnet as your original router 192.168.0.x.... and add a route for 192.168.11.x network pointing to the new IP address of your VPN router.


if your original router allows secondary ip addressing then add a secondary ip address to the interface in the 192.168.25.x range. then add a route for 192.168.11.x network to

In your current configuration the 2 routers will never route to each other because they do not share the same subnet to route to (in other words there is no layer 3 connectivity)

Expert Comment

ID: 17840497
risner_it has got the easiest solutions for you without changing too much in option 2.

Author Comment

ID: 17842114
Thanks everyone for your comments.  We are trying 'risner_it' #2 solution this morning.

I will report back.



Expert Comment

ID: 17842407

let me know if you get stuck =)

Author Comment

ID: 17873838
Solution #2 worked great.  We wanted to keep this installation 'separate' from the other users.



Expert Comment

ID: 17877949

glad it helped, even though i mistyped the route add part should have been but i see you got the idea.


Featured Post

Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Let’s list some of the technologies that enable smooth teleworking. 
When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
Internet Business Fax to Email Made Easy - With  eFax Corporate (, you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question