Solved

Cannot Connect to Server Shares on RRAS VPN Server over PPTP

Posted on 2013-02-05
6
665 Views
Last Modified: 2013-03-24
I am hoping someone with advanced experience in RRAS and routing can help me ;)
I am referring to an already answered question at:
http://serverfault.com/questions/147117/cannot-access-server-shares-over-vpn
I am having this same issue there, however, the answer posted is not helpful enough.
I used the instructions found here:
http://www.devtoolshed.com/content/windows-server-2003-configure-rras-routing-and-remote-access-service-site-site-vpn
To setup a VPN.
I basically need an ancrypted connection to a webserver on the web to access a file share, and no, I do not want to use SFTP. Using the instructions, I can connect, however, I cannot access a network share on the VPN server itself.
Referring to the last answer posted that was reported to work, specifically how do you "add a client-side static route to pass any traffic for the server's local ip address via the address it got from the RRAS static pool"
Can anyone tell me specifically how this is accomplished? Screen shots would be helpful.
0
Comment
Question by:tncode
  • 4
  • 2
6 Comments
 
LVL 77

Expert Comment

by:Rob Williams
ID: 38856472
Most often this is caused by the emote client and the corporate network issuing the same subnets, such as both sites using something like  192.168.1.x
They need to be different or routing cannot take place.

If that is not the issue could you please post an ipconfig /all  from both client and server, preferably while the VPN is connected.
0
 
LVL 6

Author Comment

by:tncode
ID: 38856652
I do not believe that is the problem. Below is the ipconfig information. I used ??? in place of information I do not want everyone to know.

PPTP SERVER:

PPP adapter RAS Server (Dial In) Interface:

   Connection-specific DNS Suffix  . :
   IP Address. . . . . . . . . . . . : 192.168.100.100
   Subnet Mask . . . . . . . . . . . : 255.255.255.255
   Default Gateway . . . . . . . . . :

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . :
   IP Address. . . . . . . . . . . . : 184.175.121.???
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 184.175.121.1

CLIENT:

PPP adapter IDAData:

   Connection-specific DNS Suffix  . :
   IPv4 Address. . . . . . . . . . . : 192.168.100.104
   Subnet Mask . . . . . . . . . . . : 255.255.255.255
   Default Gateway . . . . . . . . . :

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . : ???.???.com
   IPv4 Address. . . . . . . . . . . : 192.168.77.51
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 192.168.77.254
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 38856714
Based on the ipconfig's, routing, either due to subnets or VPN scope, should not be a problem.  When configuring RRAS, I noticed the instructions you posted suggested enabling NAT, which I would discourage unless it is being used for other reasons, and on that page you should most definitely enabled "LAN routing". You should still be able to do so under properties of the server in RRAS.
0
Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

 
LVL 6

Author Comment

by:tncode
ID: 38864140
I tried it again and enabled enabled "LAN routing" and it did not work. I believe I need NAT so that packets can route from the network adapter (port 80) to the local machine (127.0.0.1), so it can still be used as a webserver.
0
 
LVL 6

Accepted Solution

by:
tncode earned 0 total points
ID: 39000099
I gave up on this issue, I couuld not find a solution.
0
 
LVL 6

Author Closing Comment

by:tncode
ID: 39015238
I gave up on this issue, I could not find a solution.
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Join & Write a Comment

Suggested Solutions

If you use NetMotion Mobility on your PC and plan to upgrade to Windows 10, it may not work unless you take these steps.
Let’s list some of the technologies that enable smooth teleworking. 
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now