Solved

Issue connecting via VPN

Posted on 2008-06-20
11
196 Views
Last Modified: 2010-04-12
Hello,

I have a CISCO ASA5505 PIX Firewall and I'm having a problem mapping a drive and using Remote Desktop Connection to our server after I make a successfull VPN Connection. I'm not sure what the issue is. The only thing that has changed is our External IP Address due to changing ISP providor. I made all of the modifications to connect to the remote LAN.

Thanks, in advance.
0
Comment
Question by:aromeo409
  • 7
  • 4
11 Comments
 

Author Comment

by:aromeo409
ID: 21835036
modification
0
 
LVL 14

Expert Comment

by:agriesser
ID: 21835070
So you can establish the VPN connection without problems? Where is the terminal server located you're trying to connect to? Behind the ASA or in your local network?

Can you ping it?

Are you using Cisco's VPN client to connect to this ASA?
0
 

Author Comment

by:aromeo409
ID: 21838017
I can establish a VPN Connection with no problems and the TS is on our Local network behind the ASA. We also cannot oing it while connected to the VPN and we are using the CISCO VPN client 5.0.01.0600.
0
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 14

Expert Comment

by:agriesser
ID: 21838141
I think I still did not understand you.

Let's say your local network (the network where you're currently sitting) is 192.168.1.0 and you try to establish a VPN connection to the network 192.168.2.0.
Where is the terminal server located? In 192.168.1.0 or 192.168.2.0?

I assume it's in 192.168.1.0 which would make sense since you said you can't even ping it when connected to the VPN tunnel.
Therefore I further assume that you probably have a VPN configuartion file (.pcf) which probably simply has the EnableLocalLanAccess disabled?

Open your pcf file (or modify the connection entry in the GUI) and enable local LAN access.
Did this help?
0
 

Author Comment

by:aromeo409
ID: 21838158
The network I'm currently sitting in is my home local network (192.168.1.0). The terminal server is located at our office which has a local netwok range of 192.168.1.0 and the TS local IP is 192.168.1.2.  

I now establish a VPN connection and I do have the enable local LAN access option selected within the pcf file. Once I make a successfull VPN connection, I' unable to map a network drive of connect to the TS in my remote office. This only started when we just switched to a new ISP provider.

Thanks, in advance.
0
 
LVL 14

Expert Comment

by:agriesser
ID: 21838178
That won't work. You can't have the same network range at home and at work.
You need to either change all ip-adresses at work or at home.

The best idea for people who are using VPN connections very often is to use unusual network addresses at home.
I, f.ex., use 10.255.255.0 at home.

If your local network is in the same IP range than the remote network, you can't route packets there because your local LAN adapter always thinks that 192.168.1.0 is on the wire in your house.

Change the network addresses on one of these two sides and the VPN connection will work.
0
 

Author Comment

by:aromeo409
ID: 21838196
i'll try it and let you know. Thanks!
0
 

Author Comment

by:aromeo409
ID: 21838199
what class subnet?
0
 
LVL 14

Accepted Solution

by:
agriesser earned 500 total points
ID: 21838213
Doesn't matter, it just has to be different from the one you're connecting too.
Take 10.255.255.0/255.255.255.0 for example and you will most likely never have problems again (except when trying to establish a VPN connection to me ;) ).
0
 

Author Comment

by:aromeo409
ID: 21838267
Works, like a charm....Thanks so much....
0
 

Author Comment

by:aromeo409
ID: 21838270

Works, like a charm....Thanks so much....
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

I found an issue or “bug” in the SonicOS platform (the firmware controlling SonicWALL security appliances) that has to do with renaming Default Service Objects, which then causes a portion of the system to become uncontrollable and unstable. BACK…
Imagine you have a shopping list of items you need to get at the grocery store. You have two options: A. Take one trip to the grocery store and get everything you need for the week, or B. Take multiple trips, buying an item at a time, to achieve t…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

685 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question