Re: Window 2003 Server - RRAS to Connect Two VLANs?



"SteveV" <StevenVibert@xxxxxxxxxxx> wrote in message news:f4ac5453-c5da-4c51-9cab-f499998929bb@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
I have a fairly simple existing network layout where all machines are
on one lan segment (VLAN1 10.13.1.x) sitting behind a Cisco ASA5505
configured as a gateway and connected to a Netopia T1 Router. I need
to add a VLAN (VLAN2 10.39.1.x) that will contain approx 35 IP
cameras. None of the cameras need to be accessable from the internet.

I have a Win2003 Std Server box configured with 2 NICs; one connected
to the 10.13.1.x segment the other connected to the 10.39.1.x
segment. As expected, I can ping and connect to devices connected to
either segment from this box. I have enabled RRAS on this box and have
created a static route that looks like this:

Destination Mask Gateway Interface
10.39.0.0 255.255.0.0 10.31.1.32 LAN


I need to have machines connected to the 10.13.1.x segment reach
devices on VLAN2. Currently none of the VLAN1 computers can ping any
of the machines on VLAN2 unless I manually add a route on the
individual machines connected to VLAN1.

I have tried adding a static route on the Cisco ASA5505 but no joy.

This is not my area of expertise so I'd really appreciate some insight
on what I might be doing wrong.




That is because the machines on the LAN have their default gateway pointing to the firewall, not to the RRAS server. As you have found you can get to the other subnet by putting a static route on each machine. You could also do it by putting the static route on the firewall to bounce the traffic for the new subnet to the RRAS router. eg

Firewall {static route 10.39.0.0 255.255.0.0 10.31.1.32}
10.13.1.1
|
LAN1
10.13.1.x dg 10.13.1.1
|
10.13.1.32 dg 10.13.1.1
RRAS
10.39.1.1 dg blank
|
LAN2
10.39.1.x dg 10.39.1.1

.

Relevant Pages

  • Re: Connection issue
    ... have alot of machines here and adding static routes to all of them is very ... > their default gateway. ... > the other site to your router. ... You can add this static route to the firewall machine. ...
    (microsoft.public.windows.server.networking)
  • Re: Window 2003 Server - RRAS to Connect Two VLANs?
    ... on one lan segment (VLAN1 10.13.1.x) sitting behind a Cisco ASA5505 ... individual machines connected to VLAN1. ... get to the other subnet by putting a static route on each machine. ...
    (microsoft.public.windows.server.networking)
  • Re: Please Gurus here solve my simple nw problem
    ... > If this is the case, then most of the machines in USERLAN, including ... > You can do this by specifying 192.168.0.111 is the gateway ... > Or you can specify a static route to 192.168.0.111 for ...
    (comp.os.linux.networking)
  • Win2k Std bridging/routing & SUS
    ... themselves as the default gateway. ... the 192 segment can ping and connect to the machines on the 98 segment. ... or can I make do with 2 NICs? ...
    (microsoft.public.win2000.networking)
  • Re: Can I shut off WAN ports and still stay on a LAN
    ... Make the Default Gateway its own IP#. ... IT can communicate with other machines on the same IP# ... segment, but will not be able to leave the IP Segment. ...
    (microsoft.public.win2000.networking)
Loading