Re: adding a route to the client
- From: "Phillip Windell" <philwindell@xxxxxxxxxxx>
- Date: Thu, 3 Apr 2008 10:38:22 -0500
"jogdial" <jogdial@xxxxxxxxx> wrote in message
news:f3f1b392-9998-4d9b-828b-710f0be48982@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
As stated before, if I add a net route statement to my client, using
the clients PPP DHCP assigned address that is obtained during the VPN
negotiation, I can talk to these additional segments fine. I was just
trying to find a way of automating this.
Sorry, I do not think there is any other way.
You're just going to have to do it the way you are doing it.
If you are going to leave the VPN up and try to do other things on the LAN
as well,...then you are stuck doing it this way.
I'm just telling you that according to the way Remote Access VPN is designed
to work,...the correct way is to:
1. enable "use gateway on remote network"
2. do not leave the VPN up for long periods of time, but only activate it,
perform the related taks and shut it down.
3. do not try to do tasks involving other subnets on the local LAN/WAN at
the same time the VPN is up.
7. Because the 152.x.x.x network is not a valid RFC Private Address Range
I take exception with what you are saying there. If you own an
address space, you can do whatever you like with it..
I said if they didn't own it....
If they own it,..then fine.
99.99% of the time when people quote non-RFC Private Addesses in these
groups they do not own them and are arbitrarily trying to use them on their
private LANs. So I operate on that assumption and tell them about the
problems with it. If they tell me afterwards that they do own them, then
fine,...but it is still a bad idea security-wise using Internet Routable
Addresses on a private LAN and it is waistfull with the limited supply of
Public IP#s that exist.
--
Phillip Windell
www.wandtv.com
The views expressed, are my own and not those of my employer, or Microsoft,
or anyone else associated with me, including my cats.
-----------------------------------------------------
Understanding the ISA 2004 Access Rule Processing
http://www.isaserver.org/articles/ISA2004_AccessRules.html
Troubleshooting Client Authentication on Access Rules in ISA Server 2004
http://download.microsoft.com/download/9/1/8/918ed2d3-71d0-40ed-8e6d-fd6eeb6cfa07/ts_rules.doc
Microsoft Internet Security & Acceleration Server: Partners
http://www.microsoft.com/isaserver/partners/default.mspx
Microsoft ISA Server Partners: Partner Hardware Solutions
http://www.microsoft.com/forefront/edgesecurity/partners/hardwarepartners.mspx
-----------------------------------------------------
.
- References:
- Re: adding a route to the client
- From: jogdial
- Re: adding a route to the client
- From: Phillip Windell
- Re: adding a route to the client
- From: jogdial
- Re: adding a route to the client
- Prev by Date: Re: adding a route to the client
- Next by Date: Re: How to obtain L2TP/IPSec certificate
- Previous by thread: Re: adding a route to the client
- Next by thread: VPN Logging - Durations
- Index(es):
Relevant Pages
|
