Re: VPN Client can't access internal network -- Help?!?!
From: Eric (estam_at_scsiweb.com)
Date: 04/06/04
- Next message: JD: "VPN / RADIUS"
- Previous message: LJMcA: "Re: ISA/VPN difficulty"
- In reply to: Sharoon Shetty K [MSFT]: "Re: VPN Client can't access internal network -- Help?!?!"
- Next in thread: Sharoon Shetty K [MSFT]: "Re: VPN Client can't access internal network -- Help?!?!"
- Reply: Sharoon Shetty K [MSFT]: "Re: VPN Client can't access internal network -- Help?!?!"
- Messages sorted by: [ date ] [ thread ]
Date: 6 Apr 2004 12:22:00 -0700
Hello All,
The current configuration consists of 3 machines:
1. ISA Server original
2. ISA Server new
3. PC (w2k) on the web
To the best of my knowledge machine #1 and #2 are the same. They both
have:
ISA 2000 + sp1
RRAS
W2k + sp3 + windows updates
Obviously, they are not the same machine, so there are hardware
differences, but they both have 2 NIC cards (1 for Internet + 1 for
Internalnet)
The PC has a network connection for VPN defined for machine #1. Then
I copied it and changed the IP address to point to #2.
Both connections go active and I can "logon" to both connections.
When I am connected to #2, I can ping the ISA server using the VPN
address and the internal network address, but nowhere else on the
Internal network. I can ping from #2 to the internal network. When I
tracert from the PC through #2, tracert shows the ISA server (the VPN
address), and then the normal request timeout message.
All the above are successfull on #1.
There must be something simple that I am missing... but I can't see
it.
The internal network has 2 ranges. The first is primarily used by the
machines in the network. The second is used by ancillary machines and
the VPN. The PDC is multihomed. The ISA/LAT is the same for both
machines and has both ranges defined as internal.
Please keep the questions coming... Hopefully, this will turn out to
be an easy problem.
Eric
"Sharoon Shetty K [MSFT]" <sharoons@online.microsoft.com> wrote in message news:<#GyeRG9GEHA.2408@TK2MSFTNGP12.phx.gbl>...
> Can you check the tracert output ?
>
> --
>
> Thanks
> Sharoon
> sharoons@online.microsoft.com
>
> This posting is provided "AS IS" with no warranties, and confers no rights.
>
> "Eric" <estam@scsiweb.com> wrote in message
> news:c84aa573.0404020816.168878bf@posting.google.com...
> > Hello,
> >
> > I am trying to swap out my ISA computer to a new
> > bigger/faster/stronger machine. I need to be able to test my new
> > machine without disrupting the current configuration.
> >
> > Problem:
> >
> > VPN client CAN connect to ISA/RRAS machine. CAN ping ISA/RRAS
> > machine. Can NOT access(VNC)/ping any machine on the internal
> > network.
> >
> >
> > Environment:
> >
> > NT Domain
> > W2K Server (stand alone)
> > ISA 2000 (Firewall mode)
> > RRAS
> > 2 NIC cards (Internet & Internal)
> >
> > I have a test machine here... I have 2 VPN Clients configured (1 for
> > each server) The original client works perfectly. The second one
> > fails. I can see no significant differences in the Route table.
> >
> > What did I miss?
> >
> > Eric
- Next message: JD: "VPN / RADIUS"
- Previous message: LJMcA: "Re: ISA/VPN difficulty"
- In reply to: Sharoon Shetty K [MSFT]: "Re: VPN Client can't access internal network -- Help?!?!"
- Next in thread: Sharoon Shetty K [MSFT]: "Re: VPN Client can't access internal network -- Help?!?!"
- Reply: Sharoon Shetty K [MSFT]: "Re: VPN Client can't access internal network -- Help?!?!"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
