Solved

Client VPN to same subnet as source

Posted on 2016-07-26
16
49 Views
Last Modified: 2016-08-10
I use a client VPN software on my laptop and i start and then RDP to my office desktop.
I have a remote location that has the same subnet as my office and the RDP does not work.

What is a work around to get this running?
Thanks.
0
Comment
Question by:ie0
  • 7
  • 6
  • 3
16 Comments
 
LVL 90

Expert Comment

by:John Hurst
Comment Utility
You have to change the subnet on one end. That is the best way to solve this problem. Normally changing the subnet on one end is easy. I use 192.168.100 on my home office network and no client has this subnet.
0
 

Author Comment

by:ie0
Comment Utility
I cannot change the subnet on either end unfortunately.
0
 
LVL 90

Expert Comment

by:John Hurst
Comment Utility
I have not ever seen a situation where you cannot change one end. So you are stuck.
0
 
LVL 68

Expert Comment

by:Qlemo
Comment Utility
There are some ways to get it working, but all are more sophisticated. And depending on the client VPN software you might not be able to use any. So:
  1. Which VPN client are you using?
  2. Which VPN gateway?
  3. Is the remote IP (not the subnet) used in your client network?
E.g. if you only need to RDP into 192.168.0.123, and that address isn't used on your LAN, then it might work to set a specific route for only this IP.
0
 
LVL 90

Expert Comment

by:John Hurst
Comment Utility
@ie0 - You only allowed 6 minutes before you said "impossible". Have you asked the client end?  Normally change the subnet on the router and restart the modem, router and all computers.
0
 

Author Comment

by:ie0
Comment Utility
The remote computer is a Macbook.
The VPN termination point is a Sonicwall TZ
The client software is the Sonicwall client (netextender)

The remote location is a time share, hence no access to the subnet.
I cannot re-subnet the office network just for this.

Thanks
0
 
LVL 90

Expert Comment

by:John Hurst
Comment Utility
If permanent timeshare, install your own router and use a different subnet on the extra router.  This will introduce NAT Traversal but you can work with that.
0
 

Author Comment

by:ie0
Comment Utility
Wireless access in the condo only, no ethernet cable.
0
Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

 
LVL 90

Expert Comment

by:John Hurst
Comment Utility
You may have to equip this user with a USB Internet card. I have one of these and I have used it when one client had the same subnet as another client. This works.
0
 

Author Comment

by:ie0
Comment Utility
John, can you describe the usb internet card some more as I don't understand what it is.
thanks.
0
 
LVL 90

Assisted Solution

by:John Hurst
John Hurst earned 250 total points
Comment Utility
I had a Nokia CS-18 Internet Stick and now have a HAUWEI LTE E8372 Internet Stick. The latter is cheaper to run and keep than the former and is much faster.
0
 

Author Comment

by:ie0
Comment Utility
John,
This requires a cell phone signal.
My post probably was not clear enough, I need to use the internet service I am given in the condo, not pay for another one.
Thanks.
0
 
LVL 90

Expert Comment

by:John Hurst
Comment Utility
Then you have to convince one end or the other to change.
0
 
LVL 68

Expert Comment

by:Qlemo
Comment Utility
SonicWall NetExtender is restrictive. We've switched back to using published apps when accessing a client, because exactly that issue (being on the same network - it is 192.168.100.0 :D, that much about choosing a unique one ...).

It is feasible to write up a local batch file establishing the connection, then doing some necessary fixes like changing the routing table. But this needs special adjustment on your side, and detailled information about what NetExtender sets up on connection. And of course it is flaky, because of the changes, so getting connection failures might occur, requiring to try a few times before it works.
0
 

Author Comment

by:ie0
Comment Utility
Qlemo,
What do you mean by using "published apps"  is this a sonicwall feature?
0
 
LVL 68

Accepted Solution

by:
Qlemo earned 250 total points
Comment Utility
An admin can provide preconfigured applications in the SonicWall Web Portal. After logging in via the browser, an user only sees that apps, and click on them. The user usually also sees the NetExtender as an option there.
0

Featured Post

Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

Join & Write a Comment

Like many others, when I created a Windows 2008 RRAS VPN server, I connected via PPTP, and still do, but there are problems that can arise from solely using PPTP.  One particular problem was that the CFO of the company used a Virgin Broadband Wirele…
I recently attended Cisco Live! in Las Vegas, a conference that boasted over 28,000 techies in attendance, and a week of hands-on learning hosted by a solid partner with which Concerto goes to market.  Every year, Cisco displays cutting-edge technol…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

744 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now