Solved

SBS 2003 VPN  and new address pool

Posted on 2010-09-24
2
696 Views
Last Modified: 2012-05-10
Dear experts,

I have a network based on 192.168.1.x IP range. After I setup VPN ( address pool range 192.168.1.150-200 ) i realized that most of the users use the same IP range at home trying to connect with VPN. Access via VPN  to office network resources is almost impossible.
Is there a way to change IP class and range for all VPN connection from 192.168.1.x to 10.x.x.x.

Thanks,
0
Comment
Question by:siemian
2 Comments
 
LVL 12

Accepted Solution

by:
alandc earned 250 total points
ID: 33752894
Yes, if you are also willing to change your LAN IP range.  This is why I prefer a 10.x.x.x range when setting up a company LAN.  If that is not possible I pick an alternate 192.x.x.x range like 192.168.55.x.

I have successfully setup a point-to-point VPN using ranges like 192.168.91.x thru 192.168.96.x with home customer remote VPN connecting from their home networks.

The VPN will work as long as the network portion of the IP address is different.  The network portion is that portion behind the subnet.  So when your subnet (per your example) is 255.255.255.0 then your network address is 192.168.1.0.  You just need to change part of the first three octets.  So an address like 192.168.99.0 would work.

Most home routers are setup with 192.168.0.x or 192.168.1.x.
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 33753007
You can change the "Static address pool" range assigned to client machines by opening the RRAS console, right click on server name and choose properties, then under the IP tab choose to use a static address pool rather than DHCP. This will still use DHCP for client machines but it will draw from this pool. The first IP in the range will be assigned to the server.
HOWEVER, this does not solve the problem as the the LAN is still on the same subnet and you cannot have two network segments in a path that are the same. It will allow access to the server, but no other device on the LAN.
Your only option is to change the Corporate LAN. If doing so in an SBS network you MUST use the change server IP wizard located under server management | Internet and e-mail. Once complete re-run the connect to the internet wizard (CEICW). Make sure you do a full backup of the server first. On a few occasions changing the server IP on SBS has been known to corrupt some services. Not using the change server IP wizard will definitely do that.
With SBS do you really need a VPN? Using built-in services available to SBS it is seldom needed and a VPN allows unrestricted access by the remote user including transferring of viruses. RWW, OWA, Sharepoint, and rpc/http are better choices.
0

Featured Post

Portable, direct connect server access

The ATEN CV211 connects a laptop directly to any server allowing you instant access to perform data maintenance and local operations, for quick troubleshooting, updating, service and repair.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

I’m often asked about newer and larger USB drives connected to SBS2008 and 2011 failing Windows Server Backup vs the older USB drives not failing. As disk space continues to grow and drive technology change SBS2008 and some SBS2011 end up with the f…
Secure VPN Connection terminated locally by the Client.  Reason 442: Failed to enable Virtual Adapter. If you receive this error on Windows 8 or Windows 8.1 while trying to connect with the Cisco VPN Client then the solution is a simple registry f…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

740 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question