Solved

Unable to access the server via VPN unless on the same gateway

Posted on 2008-10-21
4
266 Views
Last Modified: 2010-04-02
Hi,

I believe this to be a very simple routing issue and I will attempt to explain.

We currently have two connections coming into the company the first is an ADSL the second is an SDSL, behind the connections are 2 Windows 2000 servers both acting as domain controllers

Connected to the SDSL is a sonicwall firewall, we have several site offices also with sonicwalls. Each with established hardware to hardware VPN connections.

The first server has an IP of 192.168.0.52
and the second server has an IP of 192.168.0.20
and they are both currently using the Gateway 192.168.0.1 which is the SDSL connected to the sonicwall.

As long as both servers are using the above Gateway the remote sites can see both servers with no problems,
what I need to do is set the second server to use a different Gateway i.e. the ADSL account, however when I do this, none of the site offices are able to see the second server.
0
Comment
Question by:jacass
  • 2
4 Comments
 

Expert Comment

by:Fess332
ID: 22767884
This is a routing issue, the LAN server see's all IP's not in your 192.168.0.x as not on its LAN so it goes out its gateway (192.168.0.1), if you know the IP address of the second location that goes out the ADSL connection you can set a route on the gateway (sonicwall) to use the ADSL route when it needs to go to that particular address range, So leave the gateway on the servers the same as they are now and tell the Gateway (sonicwall) that there is a different route to the other office ans to use the IP on the ADSL connection
0
 
LVL 1

Accepted Solution

by:
Novensiles earned 500 total points
ID: 22767960
On the second server set a default route so the remote VPN subnet uses the correct VPN gateway - VPN client communication will only happen via VPN gateway.

ie. assuming a remote subnet is 192.168.1.0/24 (modify as required for your remote subnet)
On server two, with default gw on ADSL IP

route -p add 192.168.1.0 mask 255.255.255.0 192.168.0.1

repeat for each remote subnet.
0
 

Author Comment

by:jacass
ID: 22768127
The second gateway is IP address 192.168.0.98

however I am by far a sonicwall expert would you be able to give me a little bit more information as to where in the sonicwall would I put this information?
0
 

Author Comment

by:jacass
ID: 22768801
Novensiles,

I did what u said and it worked a treat, thanks for that.
0

Featured Post

3 Use Cases for Connected Systems

Our Dev teams are like yours. They’re continually cranking out code for new features/bugs fixes, testing, deploying, testing some more, responding to production monitoring events and more. It’s complex. So, we thought you’d like to see what’s working for us.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Article by: rfc1180
The Maximum Segment size (MSS) is an important consideration when troubleshooting connectivity via the Internet/Intranet. As the packets are routed via the Internet/Intranet, the packets must traverse through multiple routers in the path between two…
Occasionally, we encounter connectivity issues that appear to be isolated to cable internet service.  The issues we typically encountered were reset errors within Internet Explorer when accessing web sites or continually dropped or failing VPN conne…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Finds all prime numbers in a range requested and places them in a public primes() array. I've demostrated a template size of 30 (2 * 3 * 5) but larger templates can be built such 210  (2 * 3 * 5 * 7) or 2310  (2 * 3 * 5 * 7 * 11). The larger templa…

786 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question