asked on

When I connect to my VPN, I lose internet access

I have a mobile broadband USB card (novatel USB760), vista 64 business, on a laptop. If I use my wireless broadband card for internet access, everything works just fine. however, if I try to connect to my office VPN, i lose internet access yet connect to the vpn and remain connected to verizon.
i have the same configuration on a desktop, but that works just fine (tested with novatel broadband card/verizon and exact same work VPN).
Not being able to use the internet and my VPN is defeating the whole purpose of the connectivity I need. Any ideas?

dvanderh

What VPN client are you using? I've seen this happen in the past with the Cisco VPN client & Vista. Upgrading the Cisco VPN client to version 5.0.05.0280 fixed the issue.

raw_enha

ASKER

I am using Windows to "set up a connection". basically manually creating a vpn without any 3rd party cliient

ASKER CERTIFIED SOLUTION

dvanderh

membership

This solution is only available to members.

To access this solution, you must be a member of Experts Exchange.

Start Free Trial

raw_enha

ASKER

dvanderh:

well it keeps internet access now, but no VPN network abilities, it's ignoring my DHCP/login info, it's giving me a 169.254.0.25 instead of 192.168.0.150 specified in my login credentials. trying this on another machine; my login gives me the correct network address via VPN. so still something weird going on

Michael Worsham

Under Vista, I recommend disabling the TCP auto-tuning as well:

netsh interface tcp set global autotuning=disabled
netsh interface tcp set global chimney=disabled
netsh interface tcp set global rss=disabled

Reference:
http://silverstr.ufies.org/blog/archives/001035.html

---

Also, if your work is using Cisco as their VPN endpoint, you usually need to use the Cisco VPN client and also make sure that split-tunneling is enabled on the endpoint side as well.

c062397

If I was to take a wild guess I woul say that when you connect to vpn your computer is instructed by the remote side to change some TCP/IP settings such as routes or nameserver.
To debug that I would need the following:
1. The output of ipconfig /all before you connect to the VPN
2. The output of ipconfig /all after you connect to the VPN
You can go to Start - > Run -> Type cmd and afterwards type ipconfig /all

Regards,

C

raw_enha

ASKER

pre VPN ipconfig /all

Windows IP Configuration

Host Name . . . . . . . . . . . . : HDS-Mike-2
Primary Dns Suffix . . . . . . . : HDS.local
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : HDS.local

PPP adapter Verizon Wireless - VZAccess:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Verizon Wireless - VZAccess
Physical Address. . . . . . . . . :
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv4 Address. . . . . . . . . . . : 70.198.180.20(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.255
Default Gateway . . . . . . . . . : 0.0.0.0
DNS Servers . . . . . . . . . . . : 66.174.95.44
66.174.92.14
NetBIOS over Tcpip. . . . . . . . : Enabled

Wireless LAN adapter Wireless Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel(R) WiFi Link 5300 AGN
Physical Address. . . . . . . . . : 00-21-6A-1E-C2-26
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

raw_enha

ASKER

post vpn ipconfig /all

Windows IP Configuration

Host Name . . . . . . . . . . . . : HDS-Mike-2
Primary Dns Suffix . . . . . . . : HDS.local
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : HDS.local

PPP adapter HDS VPN:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : HDS VPN
Physical Address. . . . . . . . . :
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Autoconfiguration IPv4 Address. . : 169.254.0.25(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.0.0
Default Gateway . . . . . . . . . :
DNS Servers . . . . . . . . . . . : 192.168.0.10
NetBIOS over Tcpip. . . . . . . . : Enabled

PPP adapter Verizon Wireless - VZAccess:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Verizon Wireless - VZAccess
Physical Address. . . . . . . . . :
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv4 Address. . . . . . . . . . . : 70.198.180.20(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.255
Default Gateway . . . . . . . . . : 0.0.0.0
DNS Servers . . . . . . . . . . . : 66.174.95.44
66.174.92.14
NetBIOS over Tcpip. . . . . . . . : Enabled

raw_enha

ASKER

mwecomputers:

i tried disabling the tcp tuning as per your instructions, but no change. seems that DHCP is somehow the issue here, but i don't know how. if it would be somehow set to "enabled" it should grab the correct IP from our VPN server, as it does on all the other computers i connect with

c062397

Please also provide the output of "route print" in the same manner, before and after connecting to the VPN server.

Regards,

C

raw_enha

ASKER

prevpn "route print"

===========================================================================
Interface List
24 ........................... Verizon Wireless - VZAccess
17 ...00 21 6a 1e c2 26 ...... Intel(R) WiFi Link 5300 AGN
11 ...00 21 70 d0 39 a3 ...... Intel(R) 82567LM Gigabit Network Connection
1 ........................... Software Loopback Interface 1
16 ...00 00 00 00 00 00 00 e0 isatap.{C8ACE402-5C00-4745-9841-6755E910EA2A}
10 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
12 ...00 00 00 00 00 00 00 e0 isatap.{560A6299-F340-418C-A6BE-786BB7FD8027}
13 ...00 00 00 00 00 00 00 e0 isatap.pen.apac.dell.com
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 On-link 75.192.71.80 51
75.192.71.80 255.255.255.255 On-link 75.192.71.80 306
127.0.0.0 255.0.0.0 On-link 127.0.0.1 4531
127.0.0.1 255.255.255.255 On-link 127.0.0.1 4531
127.255.255.255 255.255.255.255 On-link 127.0.0.1 4531
224.0.0.0 240.0.0.0 On-link 127.0.0.1 4531
224.0.0.0 240.0.0.0 On-link 75.192.71.80 51
255.255.255.255 255.255.255.255 On-link 127.0.0.1 4531
255.255.255.255 255.255.255.255 On-link 75.192.71.80 306
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
1 306 ff00::/8 On-link
===========================================================================
Persistent Routes:
None

raw_enha

ASKER

post vpn "route print"

===========================================================================
Interface List
25 ........................... HDS VPN
24 ........................... Verizon Wireless - VZAccess
17 ...00 21 6a 1e c2 26 ...... Intel(R) WiFi Link 5300 AGN
11 ...00 21 70 d0 39 a3 ...... Intel(R) 82567LM Gigabit Network Connection
1 ........................... Software Loopback Interface 1
16 ...00 00 00 00 00 00 00 e0 isatap.{C8ACE402-5C00-4745-9841-6755E910EA2A}
10 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
12 ...00 00 00 00 00 00 00 e0 isatap.{560A6299-F340-418C-A6BE-786BB7FD8027}
13 ...00 00 00 00 00 00 00 e0 isatap.pen.apac.dell.com
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 On-link 75.192.71.80 51
71.251.216.29 255.255.255.255 On-link 75.192.71.80 51
75.192.71.80 255.255.255.255 On-link 75.192.71.80 306
127.0.0.0 255.0.0.0 On-link 127.0.0.1 4531
127.0.0.1 255.255.255.255 On-link 127.0.0.1 4531
127.255.255.255 255.255.255.255 On-link 127.0.0.1 4531
169.254.0.0 255.255.0.0 On-link 169.254.0.25 306
169.254.0.25 255.255.255.255 On-link 169.254.0.25 306
169.254.255.255 255.255.255.255 On-link 169.254.0.25 306
192.168.0.0 255.255.255.0 192.168.0.143 169.254.0.25 51
224.0.0.0 240.0.0.0 On-link 127.0.0.1 4531
224.0.0.0 240.0.0.0 On-link 75.192.71.80 51
255.255.255.255 255.255.255.255 On-link 127.0.0.1 4531
255.255.255.255 255.255.255.255 On-link 75.192.71.80 306
255.255.255.255 255.255.255.255 On-link 169.254.0.25 306
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
1 306 ff00::/8 On-link
===========================================================================
Persistent Routes:
None

Michael Worsham

I recommend disabling your IPv6 interface as well. This is known to cause problems if you aren't utilizing the hardware or network configuration for it.

Vista -- Disable IPv6
http://www.lboro.ac.uk/it/vista/ipv6.html

---

When you are using your USB for connectivity, is your internal wireless card also on? If so, try disabling it to see if that helps as sometimes it might be an IP address conflict.

---
Possible solution...

Configuring a split tunnel pptp vpn in Windows Vista
http://www.isinc.com/2008/04/11/configuring-a-split-tunnel-pptp-vpn-in-windows-vista/

raw_enha

ASKER

disabled IPv6 completely as per instructions and restarted.
the split tunnel was already done.
trying the USB wireless with VPN while internal wireless was turned off produced no change.

note, if i do an ipconfig release on the vpn, it tells me that it is not configured for DHCP. this seems like the hang up, as it's not willing to get the IP assignment from the DHCP vpn server

raw_enha

ASKER

since this evolved into a different issue, i'm going to issue points for the exact answer to the initial question, and create a new question called "IP address not being assigned to my VPN connection"

raw_enha

ASKER

the unclicking "use default gateway" did the trick

jlmartinjr

I read the information about changing the IP4 and IP6 properties on the VPN connection, however with the Vista Business machine that I am running when I go to the advanced tab on the either of the two protocols their is not a box for Use default gateway on remote network.
Any suggestions of how to manually configure this?