Re: VPN error with SBS2003 and ISA
From: Jordan (nojunk_allowed_at_nospam.com)
Date: 04/28/04
- Next message: Wade Preston: "windows update on ISA server"
- Previous message: Julio E. Danoviz: "RE: How to block MSN file transfer"
- In reply to: Roger01: "VPN error with SBS2003 and ISA"
- Messages sorted by: [ date ] [ thread ]
Date: Wed, 28 Apr 2004 11:52:48 -0400
First, some of the cable/dsl router just don't work with VPN. If yours
does, you may be having a problem with your design
Second, are your IP addresses correct here? They both look like private
IPs?
Third. When you switch your clients from the x.x.2.x network to x.x.3.x
network are the gateways and routers setup correctly? Can you trace route
from the 3 network to the 2 network and back? If not, this needs to be
taken care of.
If you want users to be able to access your VPN server through the real
"outside" your network does not appear to be set up correctly. For instance
you are not metioning what your real "outside" ip is. Lets say it is
25.25.25.25 for the example below.
Your setup should be the Cable/DSL router hooked up so the external IP is
25.25.25.25. The internal IP can be 192.168.2.1. The ISA server's
"external" IP can be 192.168.2.200 with a default gateway of 192.168.2.1
(The router). The ISA "internal" IP should be 192.168.3.200 and your
"local" clients should be 192.168.3.x and point to the ISA server for web
access.
In order to get VPN to work from outside Internet clients you will need to
have ISA setup correctly as a RRAS server which it appears you do since
clients put on the 2 network side appear to work. Since you appear to be
set up correctly, the next step is to have the Cable/DSL router forward the
correct VPN ports from to the ISA "external" adapter 192.168.2.200.
All this is assuming that you are trying to get outside clients into your
network. Just in case - if you are trying to get clients on your internal 3
network to connect to other remote networks outside your LAN, you are going
about it all the wrong way.
"Roger01" <anonymous@discussions.microsoft.com> wrote in message
news:70332C81-1599-4A83-9605-882069A54293@microsoft.com...
> Hi,
>
> Over the last few days I've tried to solve an anoying problem with VPN
access to my ISA server.
>
> I've configured a SBS2003 with to NIC's. I've also installed ISA. The
server is connected to the internet through a broadband router/hub. My
outside server IP is 192.168.2.200.
>
> When I connect a client to the router/hub and try to connect to te server
("from the outside") this works fine. I can setup a VPN connection too.....
as long as mij clients IP address is within the subnet range of the servers
outside IP. When I set my clients IP to 192.168.2.99 everything works fine.
But, when I set the clients IP to 192.168.3.99, I cannot setup a VPN
anymore. The error message I get is Error 800.
>
> Of cause, as this setup doesn't work, a "real", over-the-internet external
client VPN access doesn't work either. Does anyone have a solution for this?
>
> Thanks.
>
> Roger
>
- Next message: Wade Preston: "windows update on ISA server"
- Previous message: Julio E. Danoviz: "RE: How to block MSN file transfer"
- In reply to: Roger01: "VPN error with SBS2003 and ISA"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
