Re: Site-to-Site VPN with Win2K

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

Also, you may want to use rpc over http for accessing email.

Bob Lin, MS-MVP, MCSE & CNE
Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
<wicus001@xxxxxxxxxxxxx> wrote in message news:1170950252.443223.308440@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Hi,

We have four branches connecting via ADSL VPN to the Head Office.

Each side has an NetGear DG834GT ADSL Router and Windows 2000 is
acting as the VPN server at each side.

>From a VPN perspective all is working 100%.

Yet, as we do not have our own static ip's for mail hosting, the mail
server is situated on the Net at our ISP.

All four branches could VPN to Head Office and use their local ADSL
connection to retrieve e-mail from the ISP or browse the web.

Now for the second time, the one branch can VPN to Head Office, but
can't retrieve their e-mail via the ADSL...

>From this "faulty" branch's VPN server, I can VPN to HO and connect to
the Net when directly on the server.

Yet any client machines behind the VPN server can not connect to the
internet. (In the past they could though). Any packets send to the Net
is simply terminated at the near side of the VPN server. Pinging the
far side of the VPN server allows for ICMP replies, yet NO packet GOES
NO FURTHER...

The "Enable IP Routing" is ticked within the "IP tab" under the
Routing and Remote Access Properties.

Even the "IPEnableRouter" is set to 1 within the Registry.

ISA server is NOT installed at any of the servers, with no funny
firewall....

I am aware that VPN dial-up clients is NOT allowed to do "split
tunneling". (Intranet and Internet at the same time)

But this is a site-to-site VPN setup, of which they could connect to
the Net via their ADSL connection and VPN to the HO in the past. Now I
can't fix it....

Any guys/gals with knowledge out there to help fix this?

Will be greatly appreciated.

Relevant Pages

  • Re: Connection sharing on demand
    ... Create accounts on the VPN server for users you want to have Internet ... I need a way to restrict the internet connection without restring ...
    (microsoft.public.win2000.networking)
  • Re: Adsl VPN
    ... Using the Routing and Remote access wizard it asks me what interface is the connection is for the internet. ... Its the adsl that connects to the internet and i'm assuming will receive incoming connections. ... How do i set up the VPN so that the adsl modem can receive the incoming connections? ... It's just as well, as modems do not contain a firewall, and don't even think of accepting remote connections from the Internet without one. ...
    (microsoft.public.windows.server.sbs)
  • [NEWS] Findnot.com VPN Service Address Privacy Breach and Unencrypted Data
    ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... Findnot.com VPN Service Address Privacy Breach and Unencrypted Data ... Exposing your REAL IP address during Internet ... a disconnection with the remote VPN server. ...
    (Securiteam)
  • Re: ISA2004 kills VPN outbound
    ... Can you please tell me some information about the remote VPN Server? ... Do you have firewall client installed? ...
    (microsoft.public.windows.server.sbs)
  • Re: ISA2004 kills VPN outbound
    ... I have the same problem connecting to several different VPN servers. ... > it use a hardware router or a windows-based computer to be its VPN Server? ... > connection will fail in some cases when a hardware firewall resides in the ... > |> FW client and configure the client as a SecureNAT client. ...
    (microsoft.public.windows.server.sbs)