Re: SBS & Routing

Thanks Leythos,

I'm having a little difficulty in seeing the point in setting the remote
client's DNS server to our SBS, which it can't even ping. In that case it
would have no DNS at all, at the moment it has internet DNS at least. As far
as the remote client goes, I do not need to join the SBS domain or access
anything through host names, IP routing to the server is all I need. If the
SBS is rejecting the connection on a security basis I take this back, but I
can always ping a 2003 domain server from a non-domain member in every other
case.

I think this is more of a routing issue, nothing to do with DNS.

Regarding the DGW, as I explained in the original post, it is 192.168.10.254
on the remote site, as is configured on the remote client.

Anyone with any further ideas please?


--
Regards,
David Hartry
MCSE
--


"Leythos" wrote:

> In article <3C0B2228-7B1C-428A-9470-A5FFC5D5E380@xxxxxxxxxxxxx>, =?Utf-
> 8?B?RGF2aWQgSGFydHJ5?= <d_hartry{AT}hotmail{DOT}com> says...
> > Hi,
> >
> > I've just installed two DSL IPSec VPN routers, one at head office, one at a
> > branch office. SBS03 with one NIC is located at head office. At the branch
> > office there is simply one PC connected directly to the router. The IPSec
> > tunnel is working correctly, I've confirmed this with the manufacturer. The
> > problem I'm having is connecting to the SBS from the branch PC, via the VPN.
> >
> > I can ping all other resources in the Head Office via the VPN. I can ping
> > the branch office PC from head office client PCs over the VPN. I can even
> > ping the remote PC from the SBS itself, just not the other way around.
> >
> > I think this has to be some kind of routing issue, perhaps on the SBS box???
> > The LAN ath head office is simple - just one subnet, no routing apart from
> > the internet router (i.e. the VPN DSL router I'm talking about here).
> >
> > Network looks like this:
> >
> > 192.168.10.1/24 Branch PC
> > Â=3F
> > 192.168.10.254/24 Branch DSL/VPN router
> > Â=3F \
> > Internet IPSEC VPN tunnel
> > Â=3F /
> > 192.168.0.2/24 Head Office DSL/VPN router
> > Â=3F
> > 192.168.0.0/24 LAN
> > -192.168.0.100/24 SBS2003
> > -192.168.0.10-50/24 PCs etc
> >
> > i.e. it is not a complicated network!!
> >
> > FYI I have included routes and ipconfig from server and branch office client:
> >
> > SBS2003:
> > ======
> >
> > Windows IP Configuration
> >
> > Host Name . . . . . . . . . . . . : server
> > Primary Dns Suffix . . . . . . . : xxxxxxx.local
> > Node Type . . . . . . . . . . . . : Unknown
> > IP Routing Enabled. . . . . . . . : Yes
> > WINS Proxy Enabled. . . . . . . . : Yes
> > DNS Suffix Search List. . . . . . : xxxxxxx.local
> >
> >
> > Ethernet adapter Server Local Area Connection:
> > Connection-specific DNS Suffix . :
> > Description . . . . . . . . . . . : Broadcom NetXtreme 5751 Gigabit
> > Controller
> > Physical Address. . . . . . . . . : 00-xx-xx-xx-xx-xx
> > DHCP Enabled. . . . . . . . . . . : No
> > IP Address. . . . . . . . . . . . : 192.168.0.100
> > Subnet Mask . . . . . . . . . . . : 255.255.255.0
> > Default Gateway . . . . . . . . . : 192.168.0.2
> > DNS Servers . . . . . . . . . . . : 192.168.0.100
> > Primary WINS Server . . . . . . . : 192.168.0.100
>
> [snip]
>
> > Branch Office PC
> > ==========
> > Windows IP Configuration
> > Host Name . . . . . . . . . . . . : xxxxxx
> > Primary Dns Suffix . . . . . . . :
> > Node Type . . . . . . . . . . . . : Broadcast
> > IP Routing Enabled. . . . . . . . : No
> > WINS Proxy Enabled. . . . . . . . : No
> >
> > Ethernet adapter Local Area Connection:
> > Connection-specific DNS Suffix . :
> > Description . . . . . . . . . . . : NETGEAR FA311 Fast Ethernet
> > Adapter
> > Physical Address. . . . . . . . . : 00-xx-xx-xx-xx-xx
> > Dhcp Enabled. . . . . . . . . . . : No
> > IP Address. . . . . . . . . . . . : 192.168.10.1
> > Subnet Mask . . . . . . . . . . . : 255.255.255.0
> > Default Gateway . . . . . . . . . : 192.168.10.254
> > DNS Servers . . . . . . . . . . . : 158.152.1.58
>
> Your workstation DNS should NOT be your ISP's DNS server, it should be
> the same as your SBS2003 box (since it's the DNS server) you can also
> setup WINS (since you have set that up) as the SBS box.
>
> We use 9 Linksys VPN Routers with one client, each on their own subnet
> and each local workstation group points to the main offices DNS server
> for DNS.
>
> The default gateway on each side should be the IP of the VPN router -
> meaning that you have the DGW set as .254 on the workstation, if the
> router is not at .254 then change the IP on the workstation to the
> routers IP (in the same network).
>
> You can join the workstation to the domain once you do this.
>
> --
>
> spam999free@xxxxxxxxxx
> remove 999 in order to email me
>
.

Relevant Pages
Loading