IPSec Hardware tunnel to sbs 2008
I have an SBS 2008 with a Billion 7404VGO for Internet access. (192.168.10.0/24)
I have a remote site with XP Pro sp3 workstations. The are behind a DLINK DI 808 VPN Router. (192.168.9.0/24)
I have established a working IPSEC Tunnel between the two routers.
Setup an extra site on the SBS with the correct scope, DNS and DNS reverse DBS Settings (Done this plenty of times on SBS2003).
Problem: When the remote workstation logs on the Ip shows up in DNS OK but I can't access the workstation from the SBS. I can however ping it.
Can't access remote shares or remote printers at all.
Can't access remote workststion with a TS session from the SBS server either.
Workstation can access SBS resources without problems (including printers)
Question: Do I need to make changes to the SBS firewall or is this a router issue.
Do these routers need more rules or routing (and what are they) for this to work or should the tunnel be an open lan connection as the name suggests?
Any idea's would be appreciated.
Olaf
I have a remote site with XP Pro sp3 workstations. The are behind a DLINK DI 808 VPN Router. (192.168.9.0/24)
I have established a working IPSEC Tunnel between the two routers.
Setup an extra site on the SBS with the correct scope, DNS and DNS reverse DBS Settings (Done this plenty of times on SBS2003).
Problem: When the remote workstation logs on the Ip shows up in DNS OK but I can't access the workstation from the SBS. I can however ping it.
Can't access remote shares or remote printers at all.
Can't access remote workststion with a TS session from the SBS server either.
Workstation can access SBS resources without problems (including printers)
Question: Do I need to make changes to the SBS firewall or is this a router issue.
Do these routers need more rules or routing (and what are they) for this to work or should the tunnel be an open lan connection as the name suggests?
Any idea's would be appreciated.
Olaf
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
This network is doing my head in. Normally takes me 1-2 days to get it all right but this one has kept me on my toes for 9 days now. I am too close to it.
Could you please elaborate?
Olaf