Solved

2 nic RRAS server 2003 clients can ping/access comps on local network but comps on local can't ping/access back

Posted on 2009-07-08
4
359 Views
Last Modified: 2012-05-07
I have a server 2003 box with 2 nics setup for VPN and NAT. I went the second nic route to get past a 3rd party controlled firewall in our setup that is managed by an outside companys that wants big bucks just to open a few ports.

The lan nic has a static assigned of 192.110.175.232, subnet .128 and no gateway set.
The wan nic is set with a static also and has the gateway info for our isp.

Computers outside of this network are able to connect on the wan nic and access any computer on the network BUT the computers on the network are not able to communicate. ping or anything back.

The VPN server has no firewall enabled that I have configured or am aware of.
0
Comment
Question by:avaris4069
  • 2
  • 2
4 Comments
 
LVL 77

Expert Comment

by:Rob Williams
ID: 24812557
Have you enabled LAN routing in the RRAS configuration?
http://www.lan-2-wan.com/Added%20Images/1NIC/rras-1n-3.jpg

Do I understand correctly you have a server with which you bypassed a firewall, assigned a public IP, and have no software firewall enabled other than NAT? Sounds a little risky.
0
 

Author Comment

by:avaris4069
ID: 24812936
LAN routing is enabled. All firewalls are off because I am trying to troubleshoot and rule things out. Once I get the problem solved I will be using a software firewall and tell it to only allow traffic from specific incoming macs or ips.

But all that us after I fix this issue.
0
 

Accepted Solution

by:
avaris4069 earned 0 total points
ID: 24815294
Problem solved. I had to get a route with the address pool for the VPN added to the switch.
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 24815324
Thanks for updating.
Interesting, adding a route was my first thought but I assumed the route must exist since the return reply from your client ping "found its way back home".
Good to hear.
Cheers!
--Rob
0

Featured Post

IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

Secure VPN Connection terminated locally by the Client.  Reason 442: Failed to enable Virtual Adapter. If you receive this error on Windows 8 or Windows 8.1 while trying to connect with the Cisco VPN Client then the solution is a simple registry f…
Experts-Exchange users below are the steps you can follow to upgrade your Lync server to latest CU's or cumulative updates. Note: Perform it during non-production hours.   Step 1: Backup your lync and SQL server database. Follow below article: h…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

747 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now