Solved

PPTP VPN and routing

Posted on 2012-03-15
3
483 Views
Last Modified: 2012-03-23
I have a dial up VPN setup using RRAS on a Server 2008 machine.  I have no problem connecting and getting an on the local network.  

My problem is that we have a separate subnet in our environment which users can't seem to get to through the VPN.  

Primary subnet: 10.10.10.0/24
Second subnet: 10.10.20.0/24

If I connect using a WinXP machine, I can ping any address on the primary but not the secondary.

If I connect using a Win7 machine, I can ping any address on the primary and the secondary.

Funny thing is that occassionally, the WinXP machine will get a ping response back from a device on the 10.10.20.0 network.  

Am I missing something in the XP configuration?  I've dupliated the setup on the XP machine exactly the same as the Win 7.  The option for "Use default gateway on remote network" is disabled" as internet performance is brutally slow if we enable this option.

If I enable the "Use default gateway on remote network" on the XP machine, I do get ping responses back from both subnets but we are trying to find a way to avoid this.
0
Comment
Question by:K2NS
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 16

Expert Comment

by:cantoris
ID: 37734541
If you're not using a default gateway on the remote network then you will need to add a static route to the XP machine to tell it that the other subnet is obtainable down the VPN link too.  If you look online, you'll see this is fraught with difficulty.

You may need to use the CMAK to do this.
0
 

Accepted Solution

by:
K2NS earned 0 total points
ID: 37734544
I actually figured out how to do the routing properly.  Basically, the user has to have a static IP assigned for the VPN dialup in ADUC.  Once you've assinged an IP address, a static route has to be added to the user's machine (XP based machines only as Win 7 seems to route it properly).  The static route's gateway has to match the static IP you've assigned and since it should never changed, a persistent route can be created and there is no issue with the user getting a different gateway address the next time he connects.
0
 

Author Closing Comment

by:K2NS
ID: 37756251
Problem was resolved.
0

Featured Post

Are your AD admin tools letting you down?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

How to set-up an On Demand, IPSec, Site to SIte, VPN from a Draytek Vigor Router to a Cyberoam UTM Appliance. A concise guide to the settings required on both devices
Sometimes drives fill up and we don't know why.  If you don't understand the best way to use the tools available, you may end up being stumped as to why your drive says it's not full when you have no space left!  Here's how you can find out...
This tutorial will give a short introduction and overview of Backup Exec 2012 and how to navigate and perform basic functions. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as conne…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question