Solved

Cannot access any resources over VPN accept Router

Posted on 2013-02-05
10
237 Views
Last Modified: 2013-02-21
I have created a VPN between a Sonicwall NSA 240 and a Draytek Vigo 2830

The LAN network IP for the Sonicwall is 192.168.58.0/24
The LAN network Ip for the Draytek is 192.168.56.0/24

From PCs on the Sonicwall LAN I can access the Draytek router's web page (192.168.56.1)
But cannot access any servers/workstations on the LAN.

The server has it's firewalls turned off.
Any suggestions on what the issue is?
0
Comment
Question by:antonioking
  • 5
  • 3
  • 2
10 Comments
 
LVL 30

Expert Comment

by:pgm554
Comment Utility
Can you ping any thing on the other side?
0
 

Author Comment

by:antonioking
Comment Utility
Nope, only the Draytek router
0
 
LVL 30

Expert Comment

by:pgm554
Comment Utility
Sounds like you need to open ports back to the server ip address.

http://www.draytek.co.uk/support/kb_vigor_portforwarding.html
0
 
LVL 14

Expert Comment

by:plug1
Comment Utility
It sounds like the pcs and servers on the other side are using a different router as thier default gateway, if this is the case you need to add a static route on that gateway pointing to the subnet 192.168.56.0.

A tracert from the pc's on 192.168.56.0 will verify if this is the problem.
0
 

Author Comment

by:antonioking
Comment Utility
The server and PCs on the branch office cannot ping anything at the head office. Not even the gateway router.
0
What Should I Do With This Threat Intelligence?

Are you wondering if you actually need threat intelligence? The answer is yes. We explain the basics for creating useful threat intelligence.

 

Author Comment

by:antonioking
Comment Utility
I have opened the ports to the server on the router.
I have port forwarded 3389 (RDP)

It still doesn't ping, RDP doesn't work.
Cannot access any resources either side of the network.
ie... PCs on 192.168.58.0/24 cannot access any PCs on 192.168.56.0/24 accept the router on 192.168.56.1
PCs on 192.168.56.0/24 cannot access any PCs on 192.168.58.0/24
0
 
LVL 14

Expert Comment

by:plug1
Comment Utility
Can you post an IPCONFIG from a PC on 192.168.58.0 network and then a tracert from that pc to a pc on 192.168.56.0 which is pingable please? Sorry for the delay .. been a bit busy.
0
 
LVL 14

Expert Comment

by:plug1
Comment Utility
Obviously the tracert will fail but I want to see the path.
0
 

Accepted Solution

by:
antonioking earned 0 total points
Comment Utility
A vlan on the draytek was causing the problem, and reconfiguring the vlan  resolved the issue.

Thanks for your time.
0
 

Author Closing Comment

by:antonioking
Comment Utility
Resolve issue myself.
0

Featured Post

Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

Join & Write a Comment

Suggested Solutions

Like many others, when I created a Windows 2008 RRAS VPN server, I connected via PPTP, and still do, but there are problems that can arise from solely using PPTP.  One particular problem was that the CFO of the company used a Virgin Broadband Wirele…
Overview Often, we set up VPN appliances where the connected clients are on a separate subnet and the company will have alternate internet connections and do not use this particular device as the gateway for certain servers or clients. In this case…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now