[Webinar] Streamline your web hosting managementRegister Today

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 815
  • Last Modified:

How can I configure vpn routing with windows 2008 r2?

I need to connect about 30 computers with a remote active directory domain controller throw a VPN connection. Servers have public ip like 60.x.y.z with only one network interface.VPN client receive IP like 192.168.10.x.
The domain controller has also the ras server rule.
I need to configure the routing becouse, from a client, I can ping only the public and private ip of the vpn server but I can't connect with others remote servers. How can i do this?
0
R0yal
Asked:
R0yal
  • 5
  • 2
  • 2
  • +1
1 Solution
 
DaaneLCommented:
Hello,

Set up a server with Routing and Remote Access and DHCP. Configure it as a VPN for users to call in with AD account and kerberos authentication. But instead of having the standard NAS make sure that RRAS take IP for DHCP and there you have more options on how to configure your IP dns etc.
0
 
Hypercat (Deb)Commented:
You need to enable LAN routing as well as demand dial on your RRAS server. I don't have a 2008 RRAS server to look at, but on a 2003 RRAS server, it is in the properties of the RRAS server, on the General tab - see attached screen capture.  You need to check the Router checkbox and the LAN and demand dial routing radio button as shown.
RRAS-server-Properties-General-T.jpg
0
 
Jason WatkinsIT Project LeaderCommented:
0
Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

 
R0yalAuthor Commented:
Response to DaaneL:
I installed vpn routing and dhcp server, but clients don't take the ip from dhcp server becouse they can't communicate with the server network.
0
 
R0yalAuthor Commented:
Response to hypercat:
I enabled Lan routing but I can reach only the rras server, but i can't reach other servers.
0
 
R0yalAuthor Commented:
Response to Firebar:
The step-by-step guide is very useful but i have 5 server with only one network card with  public ip. The vpn server assign clients private IPs but i can't reach other public ip from the vpn client connection.
I tried NAT protocol and RIP protocol without success. Do you have any ideas?
0
 
Hypercat (Deb)Commented:
R0yal, could you please post the complete IP configuration information (results of running IPCONGIF /ALL from the command prompt) for your RRAS server and the other servers?  I understand you are giving out addresses to the VPN clients in the 192.168.10.x range. If your servers, including the RRAS server, are all in a different IP addressing range and are not multi-homed with an address in the 192.168.10.x range or using a router to route between the two networks, then you are going to have th communication issues you've described. You will have to create some sort of routing path (could be as simple as properly configuring the default gateway for the VPN clients) between the RRAS server and the other servers if you want your VPN clients to access them.
0
 
R0yalAuthor Commented:
I solved the problem configuring in the right way the NAT protocoll under RRAS Server, from internal private network to public network using a publi ip. Thanks.
0
 
Jason WatkinsIT Project LeaderCommented:
Glad to hear that it has been worked out.
0
 
R0yalAuthor Commented:
In the document I found many helpful information even if there isn't hte complete solution.
0

Featured Post

SMB Security Just Got a Layer Stronger

WatchGuard acquires Percipient Networks to extend protection to the DNS layer, further increasing the value of Total Security Suite.  Learn more about what this means for you and how you can improve your security with WatchGuard today!

  • 5
  • 2
  • 2
  • +1
Tackle projects and never again get stuck behind a technical roadblock.
Join Now