VPN to RRAS problem when both network subnets in same IP space?
Posted on 2007-08-10
I've been in the Cisco world for so long, it's taking a little time to get abck into the Windows arena.
I'm trying to get VPN working to a SBS 2003 server. Company's local subnet is 192.168.0.0/24. RRAS is setup to hand VPN clients an IP address out of this IP subnet. Majority of people's home networks is also 192.168.0.0/24. When I test from my home, which is 192.168.0.0/24 subnet, I get to "verifying username and password" but then the connection times out. If I change my subnet at home to a different /24, it works perfectly.
It appears as though after the VPN connection establishes, the VPN client is looking for server and company resources on the local subnet, since the IP subnets are the same, and not tunneling communication with the server across the VPN tunnel?? What am I doing wrong? Is there a setting I'm missing somehwere? What's the easiest setup without having to hit several users' homes?
This is why I'm a fan of terminating VPN tunnels on the border device!