Re: Multihomed RRAS Configurations

From: Bill Grant (not.available_at_online)
Date: 02/22/05

Next message: Samir Jain [MSFT]: "Re: Windows 2000 and Windows XP RAS"
Previous message: Robert L [MS-MVP]: "Re: Multihomed RRAS Configurations"
In reply to: rgc: "Multihomed RRAS Configurations"
Messages sorted by: [ date ] [ thread ]

Date: Tue, 22 Feb 2005 17:42:02 +1100

DHCP doesn't really have much to do with this problem. The VPN client
does not get its network config from the DHCP server. If you have set up the
RRAS server to use the DHCP option, what really happens is that the RRAS
server will lease a batch of IP addresses from DHCP to use for VPN.

When the client connects, it gets an IP (and other things like DNS and
WINS addresses) from the RRAS server. If you are using the DHCP option, the
client will get an IP address in the same subnet as your private LAN
(because the RRAS server got its addresses from your DHCP server). The VPN
client does not connect to either of the server's NICs. It connects to a
"virtual" interface which appears in the RRAS console with the name
"internal".

Making a VPN connection sets up a simple IP connection. It is not the
same thing as a LAN connection. Importantly it does not carry LAN
broadcasts, so name resolution and browsing does not work automatically.

Can you ping a LAN machine by its IP address? If yes, routing is
working. Can you ping a machine by its FQDN (ie its full name as it appears
in your local DNS server)? If yes, DNS is also working. Can you ping using
just machinename? If not, you will need to add your domain suffix to the
client's TCP/IP settings for the connection.

When you can ping by name, you should be able to browse that machine
using net view \\machinename, and then share files using net use
\\machinename\filename .

"rgc" <rgc@discussions.microsoft.com> wrote in message
news:97242BB3-2383-48CF-A42E-92EBC50148C1@microsoft.com...
>I have Windows 2000 Advanced Server system with two network cards. Each
> >card is configured on a seperate subnet. My understanding of DHCP is
>that it
> configures to the internal network card not the external network card. I
> am
> creating a VPN connection with the external network card. I am running
> DNS
> and DHCP on the server on my internal card. The second network card is
> configured with a static IP address from a range of IP address. I want to
> be
> able to come in two the RRAS server as the external network card or subnet
> and see the resources on the internal network. My understanding is that I
> am
> creating a multihomed DHCP server which should support multiple NICS. I
> also
> understand that the server must be physicaly multihomed because the server
> service will bind only the primary IP address on each interface. If the
> internal network has multipe network IDs, and VPN clients need to reach
> resources on these muutiple network IDs, configure the routing table on
> the
> VPN server. The VPN clients take advantage of the router table on the VPN
> server to reach resources on remote networks. It also recommends that you
> configure the new routing table entries in RRAS GUI interface. My question
> is
> what configuration is needed in DHCP on the server when you have two nic
> cards. Do you setup the internal network card and then refer the second
> nic
> card in a the same scope or do you setup another scope referencing the
> second
> card (external network)and I also am aware that their is a DHCP relay
> agent
> which works as a protocol router for DHCP messages. Currently, I am able
> to
> log into the RRAS as a user and that user is seen on the RRAS server but I
> am
> unable to see any network resources in My Network Places/The network
> neigborhood! I have study many areas of infomation on the internet and I
> have not found any area which explains the proper configuration of a two
> subnets multihomed network running RRAS and DNS & DHCP on a server.
> I want to be able to tunnel on a static IP address on a seperate network
> card but
> then see the internal network at my office and see all the resources! I
> have
> to believe that this would be almost a standard configuration for any
> small
> business who doesn't want to expose his business to the rest of the world.
>
> Thanks,
> Robert
>
> Note: If you need ipconfig /all or need IP routing tables please let me
> know.

Next message: Samir Jain [MSFT]: "Re: Windows 2000 and Windows XP RAS"
Previous message: Robert L [MS-MVP]: "Re: Multihomed RRAS Configurations"
In reply to: rgc: "Multihomed RRAS Configurations"
Messages sorted by: [ date ] [ thread ]

Relevant Pages

RE: Problems with Permissions
... For the "Network Configuration Wizard" not accessible issue, ... The DHCP not working properly issue may due to DNS not correctly ... ipconfig /all on SBS server, ...
(microsoft.public.windows.server.sbs)
Re: networking private and public hosts questions
... some systmes in storage to create a test network. ... a WS to the child and attempted to pull an IP from the DHCP server, ...
(microsoft.public.win2000.networking)
Re: Multiple IP Schemes for Different Buildings
... The linksys on your first network stays as it is, ... DHCP broadcast is on the local subnet only, ... router to forward internet traffic to your firewall. ... If each server has it's own DHCP server then I don't need to worry ...
(microsoft.public.windows.server.general)
Re: Any Way to Pass DHCP From Internal to Perimiter?
... WON'T BE a separate network. ... Regardless of the above DHCP operations are confined to the "physical" ... subnet where the DHCP server resides. ... DHCP relay service on your ISA server itself, then of course you will have ...
(microsoft.public.isa)
Re: Slow Network Speed from 2008 Server
... Network Adaptor properties which are a bit scary. ... I'm running AD on it as well as SQL Server 2005. ... that the DHCP didn't work. ...
(microsoft.public.windows.server.networking)