Re: routing problem site to site

From: Christopher S. Daane (s03.cdaane_at_wittenberg.edu)
Date: 03/04/04 

Date: Wed, 3 Mar 2004 21:13:30 -0500

everything is setup the way you mention it, i forgot to mention that on site
1 a nat interface is enabled, site 2 is just a dmz behind a router.

everything appears to be connected, but connectivity between the two
networks isn't possible.

in the routing table for site 1 the route for 192.168.1.0 goes to the
gateway address of 192.168.2.99 which is the ip assigned to the network 2
router on my subnet. is this the way it should be connecting? or should it
192.168.1.0 forward to something like 192.168.1.110 as its gateway on the
other subnet?

i am a little new at this!

"Bill Grant" <not.available@online> wrote in message
news:#EuwvKYAEHA.916@TK2MSFTNGP10.phx.gbl...
> How exactly did you set up these static routes? Are they linked to the
> demand-dial interfaces?
>
> The standard approach is to link a subnet route for the "other" subnet
> to the demand-dial interface. When a connection is made, these routes are
> added to the routing table.
>
> So here is a check list.
> 1. Does each RRAS router have a subnet route to the "other" subnet linked
to
> its demand-dial interface?
> 2. When the VPN connects, are both dd interfaces bound to the connection
(ie
> do they change to "connected" status)?
> 3. If both interfaces are connected, are the static routes added to the
> routing table?
> 4. Is the RRAS router the default gateway of the LAN?
>
> When the connection is up, the VPN link should work just like a simple
> IP router.
>
> "daane" <s03.cdaane@wittenberg.edu> wrote in message
> news:bf29e5cb.0403031328.27d560e2@posting.google.com...
> > i have two server 2003 machines setup for site to site vpn
> > connections.
> >
> > the first site has a subnet of 192.168.2.0
> > the second site has a subnet of 192.168.1.0
> > masks are 255.255.255.0 on all
> > the connections works fine and the static routes are configured as
> > follows
> >
> > first site 192.168.2.0
> > second site 192.168.1.0
> >
> > i am unable to ping from a client behind the first router and get a
> > response from a client on behind the opposing router. however i can
> > ping the other router with its respective ip address on the other
> > subnet, 192.168.1.110 from the client of 192.168.2.5. the reverse is
> > also true from the other side.
> >
> > so i have clients on both networks that cannot see each other, but can
> > only see the router of the other subnet that it is connected to, and
> > nothing else.?
> >
> > any suggestions?
>
>

Relevant Pages

  • Re: Site-to-Site VPN client routing question - clients at branch office not able to acce
    ... You can check this by making sure that the dd interface on the answering router has changed to connected status. ... Your DC might only have one NIC, but as soon as your VPN connection is made it has two IP addresses, so you get all sorts of problems. ... select the demand-dial interface from the dropdown list. ...
    (microsoft.public.windows.server.networking)
  • Re: Connection stalls until I do ping/traceroute in router
    ... If it was not unique, and another host shared that address, the ARP table on your system would map the gateway's IP address to the MAC address of the gateway "some of the time", and map it to the MAC address of the host sharing the IP address at "other times". ... If you connected the LAN interface of your gateway router to the LAN interface of another device which used the same default IP address for its admin interface, ... between your ISP and their connection to the interknot. ...
    (alt.internet.wireless)
  • Re: Windows 2000 RAS Server and a Cisco Client Router
    ... You need to use the method which a router to router connection uses. ... This involves setting up a demand-dial interface on the server. ... dropdown list as the interface to link with the route. ...
    (microsoft.public.win2000.ras_routing)
  • Setting up a router with 29 Global IPs, BUT cant ping router internal interface from server or serve
    ... and interface FE 0/1 with the reserved IP address of 172.18.8.66/16. ... The router is connected to a Cisco 3500 switch as are the servers. ... Network Connection #2 ...
    (comp.dcom.sys.cisco)
  • Re: routing problem site to site
    ... to the demand-dial interface. ... are both dd interfaces bound to the connection (ie ... If both interfaces are connected, are the static routes added to the ... Is the RRAS router the default gateway of the LAN? ...
    (microsoft.public.windows.server.networking)