Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

How to set the correct route for two networks connected via static VPN

Posted on 2016-11-09
4
Medium Priority
?
34 Views
Last Modified: 2016-11-30
Hello,

My main network is 10.0.92.0 MASK: 255.255.252.0 GW: 10.0.92.11. and we use ipaddresses in the range 10.0.92.0, 10.0.93.0, 10.0.94.0 and 10.0.95.0.
We have a other side with ip range 10.1.2.0 MASK 255.255.255.0 gw 10.1.2.1

On my workstation (10.0.92.45) i did: "Route -p add 10.1.2.0 MASK 255.255.255.0 10.0.92.254" on the other site is added "route -p add 10.0.92.0 MASK 255.255.252.0 10.1.2.9".
This is working fine.

But when i want to connect from a workstation (10.0.95.5) i did: "Route -p add 10.1.2.0 MASK 255.255.255.0 10.0.92.254" on the other site is added "route -p add 10.0.92.0 MASK 255.255.252.0 10.1.2.9".
This didn't work.

Can someone help me what route i have to add?

Thanks,

Edward
0
Comment
Question by:nijmedw
  • 2
  • 2
4 Comments
 
LVL 9

Expert Comment

by:Tomas Valenta
ID: 41880305
In route command the IP of the router must be on the same subnet and you do not have it.
THe 10.0.92.254 is the VPN server ? If YES, assign to this server additional IP addresses - 10.0.95.254,...
and here is correct
 a workstation (10.0.95.5): "Route -p add 10.1.2.0 MASK 255.255.255.0 10.0.95.254"
second choice is change MASK of your network with IP addresses 10.0.92-5.0 to have it on the same network.
0
 
LVL 18

Accepted Solution

by:
max_the_king earned 1200 total points (awarded by participants)
ID: 41880307
Hi,
you stated you're using static VPN and i'm taking for granted that you're routing VPNs correctly and that the gateways are able to terminate VPN fine.
That said, you're saying that in the same direction (from 10.0.92.45 to 10.1.2.0) it is working but no joy from 10.0.92.45.
This make no sense ... unless:

1. the workstation 10.0.92.45 has multiple IP addresses, in which case leave just one and it should work

2. operating system is interpreting subnet masks in a wrong way, in which case you may want to try, just as a test, to change static routes by using  
route -p add 10.0.92.0 MASK 255.255.255.0 10.1.2.9
route -p add 10.0.95.0 MASK 255.255.255.0 10.1.2.9
if it works, you can use a workaround by adding multiple routes on that PC.

hope this helps
max
0
 
LVL 9

Assisted Solution

by:Tomas Valenta
Tomas Valenta earned 800 total points (awarded by participants)
ID: 41880358
Sorry Edward, I increase size of fonts and your IP config is correct, my mistake.

put here IPCONFIG /all and "route print" from all 3 computers - other side, your network good and your network bad computer
and also: tracert -d  to_other_IP from all three computers

Who is doing VPN ? Can you turn on VPN and routing logging on this device if all commands (tracert, IPCONFIG and route print) will
be OK ?
0
 
LVL 18

Expert Comment

by:max_the_king
ID: 41906993
Seem reasonable
0

Featured Post

Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article explains the fundamentals of industrial networking which ultimately is the backbone network which is providing communications for process devices like robots and other not so interesting stuff.
LinkedIn blogging is great for networking, building up an audience, and expanding your influence as well. However, if you want to achieve these results, you need to work really hard to make your post worth liking and sharing. Here are 4 tips that ca…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…
Michael from AdRem Software outlines event notifications and Automatic Corrective Actions in network monitoring. Automatic Corrective Actions are scripts, which can automatically run upon discovery of a certain undesirable condition in your network.…

564 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question