Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

Remote Desktop and VPN

Posted on 2009-07-16
7
530 Views
Last Modified: 2012-06-27
I can connect to our VPN successfully but I can not then remote desktop anywhere. The VPN connection is done using L2TP on smoothwall and I connect to 192.168.1.171 on the remote network. I then try to connect to 192.168.1.22 but I guess it is looking at my local network rather that the remote one. Any suggestions?
0
Comment
Question by:suroma
  • 4
  • 3
7 Comments
 
LVL 77

Expert Comment

by:Rob Williams
ID: 24870942
Are you saying the remote and local networks use 192.168.1.x?
If so that will not work. With a VPN the remote and local subnets must be different.
0
 

Author Comment

by:suroma
ID: 24871689
The subnet mask of the local network is 255.255.255.0 and the remote one 255.255.255.255??
But surely this would mean most VPN's wouldn't work as they are often between home networks and work networks and most home networks run on 192.168.1.x?
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 24871765
255.255.255.0 is the subnet mask. I am referring to the network ID or subnet.

If the office to which you are connecting uses a local subnet of 192.168.1.x and the home/client network uses the same the VPN will connect but you will not be able to access resources on the remote network. This is a basic rule of routing and why when setting up a corporate office it is important never to use a common/default subnet. The reason for this is packets are route by their network ID (Subnet to which they belong). If the home network uses 192.168.1.x (assuming subnet mask of 255.255.255.0) and the remote network uses the same, when a packet is destined for the remote network the routing devices see it as a local address and the packet is not forwarded.

The one exception to this is if you enable the "Use default gateway on remote network" option on the VPN client, you can usually access resources on the VPN server, but no other device on the remote network.
0
Easy, flexible multimedia distribution & control

Coming soon!  Ideal for large-scale A/V applications, ATEN's VM3200 Modular Matrix Switch is an all-in-one solution that simplifies video wall integration. Easily customize display layouts to see what you want, how you want it in 4k.

 

Author Comment

by:suroma
ID: 24871976
OK I understand so my only option is to change the subnet of the domain here to say 192.168.0.x?
0
 
LVL 77

Accepted Solution

by:
Rob Williams earned 500 total points
ID: 24872050
It is best to change the server site, but this can be a much bigger task. Make sure you plan carefully as to allow for DHCP scopes, printers, statically addressed devices, routers and so on.
If by any chance you are running Microsoft Small Business Server, you MUST use the change server IP wizard in the server management console.

However DO NOT use 192.168.0.x This is even more common that 192.168.1.x and you will have problems with mobile clients staying in hotels and such.
Avoid:
192.168.0.x
192.168.1.x
192.168.2.x
192.168.100.x
192.168.111.x
10.0.0.x
10.10.10.x
172.16.1.x
The above all assume you are using a subnet mask of 255.255.255.0
0
 

Author Closing Comment

by:suroma
ID: 31604255
That's spectacularly bad news!! Thanks for your help.
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 24872295
Thanks suroma.
It is a very common problem. Probably the most common problem on the VPN forums.
Cheers!
--Rob
0

Featured Post

Connect further...control easier

With the ATEN CE624, you can now enjoy a high-quality visual experience powered by HDBaseT technology and the convenience of a single Cat6 cable to transmit uncompressed video with zero latency and multi-streaming for dual-view applications where remote access is required.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Meet the world's only “Transparent Cloud™” from Superb Internet Corporation. Now, you can experience firsthand a cloud platform that consistently outperforms Amazon Web Services (AWS), IBM’s Softlayer, and Microsoft’s Azure when it comes to CPU and …
When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…

808 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question