The UK Home Automation Archive

Archive Home

Group Home

Search Archive
Advanced Search

The UKHA-ARCHIVE IS CEASING OPERATIONS 31 DEC 2024

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Re: OT: Win2003 Routing/VPN Issue

To: ukha_d@xxxxxxx
Subject: Re: Re: OT: Win2003 Routing/VPN Issue
From: "Pete Shew" <pete@xxxxxxx>
Date: Tue, 25 Nov 2003 21:07:05 +0000
Mailing-list: list ukha_d@xxxxxxx; contact ukha_d-owner@xxxxxxx
References: <bq0eb1+8c6v@xxxxxxx>
Reply-to: ukha_d@xxxxxxx

Chris, to communicate between two devices on separate subnets, each device
(and all intermediate devices) need to know the route to the other. For any
device, except your server, on 192.168.2.0 to talk to a device on another
subnet you need to specify the gateway as either an explicit route or via
the default gateway. This includes VPN devices.

You say that the devices on the "2" subnet don't have a default
gateway, so
presumably all communication is restricted to computers on that subnet.

I would expect you to need a default gateway of 192.168.2.2 or a specific
route to the "1" via 192.168.2.2 network on any VPN or non-VPN
computer on
the "2" subnet. You also need routing to be enabled on the
server. Finally,
you need a specific route to be added to the computers in the "1"
subnet to
let them find their way back to the "2" subnet.

Oh, and the subnet masks should separate the two subnets - e.g.
255.255.255.0 to force routing, otherwise the computer will expect to find
the destination on the same segment.

Pete

*********** REPLY SEPARATOR  ***********

On 25/11/2003 at 20:33 Chris Bond wrote:

>> I'm not a VPN or MS expert but do play with routing a fair bit. To
>me its
>> sounds more like a missing route issue than a subnet mask.
>
>On the server its perfect i can ping/connect to both segments its
>only when VPN users come in.
>
>> Is the VPN server the only Device routing between the 192.168.1
and
>> 192.168.2 subnets (for normal devices) or is there other
>infrastructure
>> doing that ?
>
>Effectively its all thats routing - theres other firewalls etc in
>place there but nothing that isnt stopping it - its physically on
>the VPN server the problem lies.
>
>> Can Non VPN Devices on 192.168.2.x can ping devices on
>192.168.1.x ? (otherv than the server itself)
>
>No as they dont have two network cards in each workstation - only
>the servers have them in so can only route from the server.
>
>> Can the VPN Client ping ....
>> The VPN server on its 192.168.2.x address ?
>Yes
>
>> The VPN server on its 192.168.1.x address ?
>No
>
>> Other Devices on 192.168.2.x ?
>Yes
>
>> Other Devices on 192.168.1.x ?
>No
>
>> anything! ?
>Yes
>
>This is still driving me crazy =)
>
>
>
>UKHA 2004: 15th and 16th May 2004
>
>http://www.automatedhome.co.uk
>Post message: ukha_d@xxxxxxx
>Subscribe:  ukha_d-subscribe@xxxxxxx
>Unsubscribe:  ukha_d-unsubscribe@xxxxxxx
>List owner:  ukha_d-owner@xxxxxxx
>
>Your use of Yahoo! Groups is subject to http://docs.yahoo.com/info/terms/

regards, Pete
pete@xxxxxxx

References:
- Re: OT: Win2003 Routing/VPN Issue
  - From: "Chris Bond" <chris@xxxxxxx>

Prev by Date: Re: OT: Win2003 Routing/VPN Issue
Next by Date: Re: appliance modules: why don't they do...
Previous by thread: Re: OT: Win2003 Routing/VPN Issue
Next by thread: [OT] digi cam advice
Index(es):
- Date
- Thread

Home | Main Index | Thread Index

Comments to the Webmaster are always welcomed, please use this contact form . Note that as this site is a mailing list archive, the Webmaster has no control over the contents of the messages. Comments about message content should be directed to the relevant mailing list.