Solved

Server 2012 Remote Access - RRAS

Posted on 2014-10-06
5
300 Views
Last Modified: 2014-10-28
Hello,
I am setting up a new Server 2012R2 to runVPN via RAS.  I have not set one of these guys up since server 2003, so it's been a long time.  

Anyway, I'm 99% the way there.  But I am trying to achieve split-tunneling while not loosing access to all my other subnets (including remote office subnets) .  

SO, since I have both IPv4 and IPv6 setup for the RRAS server,  I have turned on IP forwarding, but turned off "Enable Default Route Advertisement" on the IPv6 interface.  On the IPv4 interface, I have defined my other subnets and the relevant gateways.  

When I connect via client, I still only get routes to my subnet that the server lives in.  Any attempt to ping/traceroute the other subnets go out my normal gateway (not on the VPN).

Again it's been a long time sine I've set this up, and Ipv6 wasn't part of it.  

Suggestions?
0
Comment
Question by:JamesonJendreas
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
5 Comments
 
LVL 17

Expert Comment

by:pjam
ID: 40364701
I believe 2012 R2 is going to need IPv6.  Perhaps encapsulated into IPv4.
I have not set this up yet, other than in class.  But I believe that you need to set up NAP Enforcement, IPSEC enforcement, GPO, HRA Server, Certificates, Tunnel type (L2TP, SSTP, and PPTP)Enable Routing and Remote Access,
Windows Firewall with Advanced Security to allow connection.
You have probably done most of this and then again, something may be missing.  My 2012R2 is in shipment, so will be tackling it soon myself.
0
 
LVL 2

Expert Comment

by:GRGrayban
ID: 40364703
Have you set up Routes or are you using RIP?
0
 
LVL 1

Accepted Solution

by:
JamesonJendreas earned 0 total points
ID: 40364830
Yeah - I'll double back through that list, but that all seems correct.  Not too sure if I was just missing this step or not -  I ended up using classless routes (option 121)  on my DHCP server to build/push routes.  

Not positive, but in the past (2003 server) I think I may have just made either a VB or batch script that manually built the routes for me.
0
 
LVL 1

Author Comment

by:JamesonJendreas
ID: 40364839
All basic static routes - pretty straight forward.
0
 
LVL 1

Author Closing Comment

by:JamesonJendreas
ID: 40407956
Resolved issue by using classless routes via DHCP
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
An article on effective troubleshooting
In this Micro Tutorial viewers will learn how to use Boot Corrector from Paragon Rescue Kit Free to identify and fix the boot problems of Windows 7/8/2012R2 etc. As an example is used Windows 2012R2 which lost its active partition flag (often happen…
This tutorial will walk an individual through the process of configuring basic necessities in order to use the 2010 version of Data Protection Manager. These include storage, agents, and protection jobs. Launch Data Protection Manager from the deskt…

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question