Client VPN to same subnet as source

ie0
ie0 used Ask the Experts™
on
I use a client VPN software on my laptop and i start and then RDP to my office desktop.
I have a remote location that has the same subnet as my office and the RDP does not work.

What is a work around to get this running?
Thanks.
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
JohnBusiness Consultant (Owner)
Most Valuable Expert 2012
Expert of the Year 2018

Commented:
You have to change the subnet on one end. That is the best way to solve this problem. Normally changing the subnet on one end is easy. I use 192.168.100 on my home office network and no client has this subnet.
ie0

Author

Commented:
I cannot change the subnet on either end unfortunately.
JohnBusiness Consultant (Owner)
Most Valuable Expert 2012
Expert of the Year 2018

Commented:
I have not ever seen a situation where you cannot change one end. So you are stuck.
Success in ‘20 With a Profitable Pricing Strategy

Do you wonder if your IT business is truly profitable or if you should raise your prices? Learn how to calculate your overhead burden using our free interactive tool and use it to determine the right price for your IT services. Start calculating Now!

Qlemo"Batchelor", Developer and EE Topic Advisor
Top Expert 2015

Commented:
There are some ways to get it working, but all are more sophisticated. And depending on the client VPN software you might not be able to use any. So:
  1. Which VPN client are you using?
  2. Which VPN gateway?
  3. Is the remote IP (not the subnet) used in your client network?
E.g. if you only need to RDP into 192.168.0.123, and that address isn't used on your LAN, then it might work to set a specific route for only this IP.
JohnBusiness Consultant (Owner)
Most Valuable Expert 2012
Expert of the Year 2018

Commented:
@ie0 - You only allowed 6 minutes before you said "impossible". Have you asked the client end?  Normally change the subnet on the router and restart the modem, router and all computers.
ie0

Author

Commented:
The remote computer is a Macbook.
The VPN termination point is a Sonicwall TZ
The client software is the Sonicwall client (netextender)

The remote location is a time share, hence no access to the subnet.
I cannot re-subnet the office network just for this.

Thanks
JohnBusiness Consultant (Owner)
Most Valuable Expert 2012
Expert of the Year 2018

Commented:
If permanent timeshare, install your own router and use a different subnet on the extra router.  This will introduce NAT Traversal but you can work with that.
ie0

Author

Commented:
Wireless access in the condo only, no ethernet cable.
JohnBusiness Consultant (Owner)
Most Valuable Expert 2012
Expert of the Year 2018

Commented:
You may have to equip this user with a USB Internet card. I have one of these and I have used it when one client had the same subnet as another client. This works.
ie0

Author

Commented:
John, can you describe the usb internet card some more as I don't understand what it is.
thanks.
JohnBusiness Consultant (Owner)
Most Valuable Expert 2012
Expert of the Year 2018
Commented:
I had a Nokia CS-18 Internet Stick and now have a HAUWEI LTE E8372 Internet Stick. The latter is cheaper to run and keep than the former and is much faster.
ie0

Author

Commented:
John,
This requires a cell phone signal.
My post probably was not clear enough, I need to use the internet service I am given in the condo, not pay for another one.
Thanks.
JohnBusiness Consultant (Owner)
Most Valuable Expert 2012
Expert of the Year 2018

Commented:
Then you have to convince one end or the other to change.
Qlemo"Batchelor", Developer and EE Topic Advisor
Top Expert 2015

Commented:
SonicWall NetExtender is restrictive. We've switched back to using published apps when accessing a client, because exactly that issue (being on the same network - it is 192.168.100.0 :D, that much about choosing a unique one ...).

It is feasible to write up a local batch file establishing the connection, then doing some necessary fixes like changing the routing table. But this needs special adjustment on your side, and detailled information about what NetExtender sets up on connection. And of course it is flaky, because of the changes, so getting connection failures might occur, requiring to try a few times before it works.
ie0

Author

Commented:
Qlemo,
What do you mean by using "published apps"  is this a sonicwall feature?
"Batchelor", Developer and EE Topic Advisor
Top Expert 2015
Commented:
An admin can provide preconfigured applications in the SonicWall Web Portal. After logging in via the browser, an user only sees that apps, and click on them. The user usually also sees the NetExtender as an option there.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial