VPN resource issues

eymsIT
eymsIT used Ask the Experts™
on
We have had a new broadband line installed at a remote office and also at head office.

We have put a Draytek 2820 router on either end and a vpn tunnel has been established.

The remote office can now connect through the vpn to head office and retrieve its email, which is on a windows 2000 server.

However it can't see other windows 2003 or 2008 servers at the head office. It can't ping them, and they (at head office) can't access the remote pc.

The previous vpn was set up on a different broadband line, so we have just moved them across to the new broadband line, and i have changed rras to point to the new draytek.

Does anyone know why this could be?

The remote pc has the ip of 172.17.12.2, and the servers at head office have ips of 172.16.0.x.
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Kent DyerIT Security Analyst Senior

Commented:
Sounds like you need to add the 172.17.12 or rather 172.17 as a trusted network..

HTH,

Kent

Author

Commented:
Rras has 172.17.0.0 in it which worked on the old vpn
Syed_M_UsmanSystem Administrator
Top Expert 2011

Commented:
you may need to do troubleshooting,

1) ping public ip from site to site b (without establishing VPN)
2) start>run>cmd>tracert -d publicip site a
3) establish VPN and try to ping if not suceed make sure

your settings in VPN is same
LOCAL and Destination networks are correct
 

Author

Commented:
Seems like Rras has got screwed up somehow on the windows 2003 server which I couldn't access.
The two windows 2000 servers which were ok both have rras on them, but when I looked on the windows 2003 server again the rras settings had disappeared (no idea how).

So I put the settings back in and now I can access the windows 2003 server.

There are other windows 2008 servers that I want to access through the vpn. Do I need to set up rras on every single one of them to do it, or is there any way of just setting it up once globally to get to the whole network through the vpn?
Syed_M_UsmanSystem Administrator
Top Expert 2011

Commented:
once you have VPN established to site you dont need to ado anything on server, but you just need to enable RDP (Remote Desktop) for remote mangament.

Author

Commented:
Why can't I vnc to the remote site from any client PC at the head office except from the servers that have read installed on them?
Commented:
It turns out the gateway of the servers was different to the gateway that the remote sites were accessing through the vpn tunnel. Once they matched it all worked

Author

Commented:
I asked another question about RRas and someone answered that the gateway was incorrect

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial