Re: VPN: Can connect but not browse or do anything

On 5 Apr 2007 19:58:28 -0700, "Marc" <newmexicoguacamole@xxxxxxxxx> wrote:

Hello,

I've got a VPN set up. Machine in South Carolina is the VPN host, and
I am connecting from Florida. Both are XP Professional SP2 boxes.

The VPN is working fine, to my knowledge -- I had to put the host
computer in the router's de-militarized zone since it couldn't do GRE
forwarding, but I can now connect successfully.

Beyond connecting, however, I can't do much. I can successfully ping
the host's IP (192.168.2.200). When I remote desktop into the host it
DOES show that my client is connected, and I can ping the client
(192.168.2.207)

All computers belong to the same workgroup. Computer Browser service
is running on both machines. Windows firewall is enabled with
exceptions; both computers have File & Print Sharing enabled.

However, when I browse the Network Neighborhood I only see my
computer. I cannot detect printer or file shares that the host is
successfully offering to other computers in its LAN in South
Carolina. When I remote desktop into the host, it does not show my
client in the Network Neighborhood either, although it DOES show the
other local computers.

The router on my client side is forwarding all TCP ports to my box,
but I cannot configure UDP forwarding (could this be an issue?). I
simply cannot seem to get the two computers to talk to each other,
even though they are successfully connected via VPN.

Any clues?

Marc,

Do you have a domain, or a workgroup? With a domain on a segmented LAN (a VPN
link segments your LAN), the domain controller will act as a domain master
browser. With a workgroup, you have 2 master browser on 2 segments, and no way
for them to see each other.
<http://nitecruzr.blogspot.com/2005/08/browsing-across-subnets.html>
http://nitecruzr.blogspot.com/2005/08/browsing-across-subnets.html

If you have a workgroup, you'll have to setup fixed links, for each cross-VPN
share. And if you can't setup a DNS or WINS server, you'll have to use IP
addresses, as name resolution broadcasts are another casualty of segmented LANs.

--
Cheers,
Chuck, MS-MVP [Windows - Networking]
http://nitecruzr.blogspot.com/
Paranoia is not a problem, when it's a normal response from experience.
My email is AT DOT
actual address pchuck mvps org.
.

Relevant Pages

  • Re: VPN: Can connect but not browse or do anything
    ... I've got a VPN set up. ... to my knowledge -- I had to put the host ... Beyond connecting, however, I can't do much. ... All computers belong to the same workgroup. ...
    (microsoft.public.windowsxp.network_web)
  • Re: [SLE] how to connect two computers
    ... Maura Edeweiss Monville wrote: ... > My current problem is how to connect physically the two computers. ... >> How are you connecting from the desktop to the network? ... Where does the VPN terminate? ...
    (SuSE)
  • VPN: Can connect but not browse or do anything
    ... I've got a VPN set up. ... to my knowledge -- I had to put the host ... Beyond connecting, however, I can't do much. ... All computers belong to the same workgroup. ...
    (microsoft.public.windowsxp.network_web)
  • access to vpn network through internet connection sharing
    ... as host for connection sharing. ... Laptop is suppoused to access the vpn network but it doesn't and I ... How to enable vpn support for connection sharing? ... Firewalls on both computers are disabled. ...
    (alt.os.windows-xp)
  • RE: [fw-wiz] (no subject)
    ... Your router does Network Address Translation - NAT. ... Your VPN server/firewall/device sees the first connection from Computer ... from your ISP, secure your two computers with host-based firewalls, and ... Deploy a second VPN device at the network to which you're connecting ...
    (Firewall-Wizards)