Remote Desktop and VPN

Posted on 2009-07-16
Medium Priority
Last Modified: 2012-06-27
I can connect to our VPN successfully but I can not then remote desktop anywhere. The VPN connection is done using L2TP on smoothwall and I connect to on the remote network. I then try to connect to but I guess it is looking at my local network rather that the remote one. Any suggestions?
Question by:suroma
  • 4
  • 3
LVL 78

Expert Comment

by:Rob Williams
ID: 24870942
Are you saying the remote and local networks use 192.168.1.x?
If so that will not work. With a VPN the remote and local subnets must be different.

Author Comment

ID: 24871689
The subnet mask of the local network is and the remote one
But surely this would mean most VPN's wouldn't work as they are often between home networks and work networks and most home networks run on 192.168.1.x?
LVL 78

Expert Comment

by:Rob Williams
ID: 24871765 is the subnet mask. I am referring to the network ID or subnet.

If the office to which you are connecting uses a local subnet of 192.168.1.x and the home/client network uses the same the VPN will connect but you will not be able to access resources on the remote network. This is a basic rule of routing and why when setting up a corporate office it is important never to use a common/default subnet. The reason for this is packets are route by their network ID (Subnet to which they belong). If the home network uses 192.168.1.x (assuming subnet mask of and the remote network uses the same, when a packet is destined for the remote network the routing devices see it as a local address and the packet is not forwarded.

The one exception to this is if you enable the "Use default gateway on remote network" option on the VPN client, you can usually access resources on the VPN server, but no other device on the remote network.
Increase Security & Decrease Risk with NSPM Tools

Analyst firm, Enterprise Management Associates (EMA) reveals significant benefits to enterprises when using Network Security Policy Management (NSPM) solutions, while organizations without, experienced issues including non standard security policies and failed cloud migrations


Author Comment

ID: 24871976
OK I understand so my only option is to change the subnet of the domain here to say 192.168.0.x?
LVL 78

Accepted Solution

Rob Williams earned 2000 total points
ID: 24872050
It is best to change the server site, but this can be a much bigger task. Make sure you plan carefully as to allow for DHCP scopes, printers, statically addressed devices, routers and so on.
If by any chance you are running Microsoft Small Business Server, you MUST use the change server IP wizard in the server management console.

However DO NOT use 192.168.0.x This is even more common that 192.168.1.x and you will have problems with mobile clients staying in hotels and such.
The above all assume you are using a subnet mask of

Author Closing Comment

ID: 31604255
That's spectacularly bad news!! Thanks for your help.
LVL 78

Expert Comment

by:Rob Williams
ID: 24872295
Thanks suroma.
It is a very common problem. Probably the most common problem on the VPN forums.

Featured Post

We Need Your Input!

WatchGuard is currently running a beta program for our new macOS Host Sensor for our Threat Detection and Response service. We're looking for more macOS users to help provide insight and feedback to help us make the product even better. Please sign up for our beta program today!

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

This article will show how Aten was able to supply easy management and control for Artear's video walls and wide range display configurations of their newsroom.
Tech spooks aren't just for those who are tech savvy, it also happens to those of us running a business. Check out the top tech spooks for business owners.
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…

627 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question