Re: Default Gateway on VPN subnets

From: v-edtian@xxxxxxxxxxxxxxxxxxxx (Edward Tian)
Date: Tue, 25 Oct 2005 07:39:07 GMT

Hi:
Thank you for the update.

Now I understand that you are using the TZ170 VPN routers to establish the
site to site VPN connection between the two offices.

To make things clearer, could you capture a screenshot from which we can
see that the default gateway was replaced with the wrong address? You can
save the screenshot as a .jpg file and send it to my mailbox:
v-edtian@xxxxxxxxxxxxxx

Once the default gateway of the remote 2003 server was automatically
changed to the default for the SBS 2003, will the 2003 server still be able
to access the internet or the SBS network?

Please also type "ipconfig/all > d:\filename.txt" on both the SBS Server
and the 2003 server when the problem is reproduced, and then send these
txt files to my mailbox for further analysis.

In addition, Config.dat is an XML file that stores configuration
information that is defined by actions on the server but must be applied on
the clients. For example, Fax Configuration Wizard writes information such
as the Transmitting Subscriber Identification (TSID) of the server modem to
this file so that client setup can configure the fax client appropriately.

Since we haven't experienced any similar issues before, the problem may
also be caused by the hardware router. I suggest you call the vendor of the
router for more detailed information.

Please feel free to let me know if you have any questions.
Have a nice day!

Best Regards
Edward Tian(MSFT)
Microsoft CSS Online Newsgroup Support

Get Secure! - www.microsoft.com/security
======================================================
This newsgroup only focuses on SBS technical issues. If you have issues
regarding other Microsoft products, you'd better post in the corresponding
newsgroups so that they can be resolved in an efficient and timely manner.
You can locate the newsgroup here:
http://www.microsoft.com/communities/newsgroups/en-us/default.aspx

When opening a new thread via the web interface, we recommend you check the
"Notify me of replies" box to receive e-mail notifications when there are
any updates in your thread. When responding to posts via your newsreader,
please "Reply to Group" so that others may learn and benefit from your
issue.

Microsoft engineers can only focus on one issue per thread. Although we
provide other information for your reference, we recommend you post
different incidents in different threads to keep the thread clean. In doing
so, it will ensure your issues are resolved in a timely manner.

For urgent issues, you may want to contact Microsoft CSS directly. Please
check http://support.microsoft.com for regional support phone numbers.

Any input or comments in this thread are highly appreciated.
======================================================
This posting is provided "AS IS" with no warranties, and confers no rights.

--------------------
| Thread-Topic: Default Gateway on VPN subnets
| thread-index: AcXY5bqk4GGqkVzkSyWICrJOIpuH9w==
| X-WBNR-Posting-Host: 212.159.44.244
| From: "=?Utf-8?B?RGVuaXM=?=" <Denis@xxxxxxxxxxxxxxxxxxxxxxxxx>
| References: <853E72F4-71B9-4856-8C97-0363924DB451@xxxxxxxxxxxxx>
<uGdwmAL2FHA.744@xxxxxxxxxxxxxxxxxxxx>
| Subject: Re: Default Gateway on VPN subnets
| Date: Mon, 24 Oct 2005 14:56:04 -0700
| Lines: 55
| Message-ID: <1825F415-A142-43B9-B784-CD53ADD307F8@xxxxxxxxxxxxx>
| MIME-Version: 1.0
| Content-Type: text/plain;
| charset="Utf-8"
| Content-Transfer-Encoding: 7bit
| X-Newsreader: Microsoft CDO for Windows 2000
| Content-Class: urn:content-classes:message
| Importance: normal
| Priority: normal
| X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.0
| Newsgroups: microsoft.public.windows.server.sbs
| NNTP-Posting-Host: TK2MSFTNGXA03.phx.gbl 10.40.2.250
| Path: TK2MSFTNGXA01.phx.gbl!TK2MSFTNGXA03.phx.gbl
| Xref: TK2MSFTNGXA01.phx.gbl microsoft.public.windows.server.sbs:164156
| X-Tomcat-NG: microsoft.public.windows.server.sbs
|
| I assign the default gateway on the remote 2003 Standard Server to
| 192.168.48.1, and a fixed IP of 192.168.48.2 (remote server network
| 192.168.48.x). When I log the remote 2003 Standard Server onto the
SBS2003
| hosted central office network the default gateway on the remote 2003
Standard
| server is set to 192.168.16.1, this is the default gateway on the main
SBS
| server network at the other end of the permanent VPN tunnel set up
between
| the SonicWall TZ170 routers linking the two networks (central office SBS
| server network 192.168.16.x). The other remote 2003 Standard Server
network
| settings: fixed IP, dns, wins are left unaffected.
|
| I have isolated the event that causes this change in default gateway. It
is
| "pushed" to the remote 2003 Standard Server by the setup script when
loging
| onto the network:
| \\"SBS Server"\Clients\Setup\Setup.exe /s "SBS Server"
|
| If I remove the default gateway config' line from the client
configuration
| file (\\"SBS Server\Clients\Setup\config.dat) and manually set up the
default
| gateways on any new machines will this cure the problem, and would it
cause
| any other effects?
|
|
|
| "Javier Gomez [SBS MVP]" wrote:
|
| > I'm not sure if I understand your problem...
| >
| > Are you are saying that after assigning a static IP address to a server
on a
| > remote location, the default gateway changes by itself?
| >
| > --
| > Javier [SBS MVP]
| > www.msmvps.com/javier
| > << SBS ROCKS!!! >>
| >
| > "Denis" <Denis@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
| > news:853E72F4-71B9-4856-8C97-0363924DB451@xxxxxxxxxxxxxxxx
| > >I am setting up a VPN network between several offices. The main office
uses
| > > SBS2003 (192.168.32.x) the first remote office will use a 2003
Standard
| > > server (192.168.48.x). The default gateway on the remote server is
| > > regularly
| > > changed to the default gateway on the SBS network automatically (at
| > > log-on?
| > > or FRS sync'???).
| > > SBS def' gtw' 192.168.16.1, the remote server's def' gtw' should be
| > > 192.168.48.1 but gets changed to 192.168.16.1.
| > > I could edit the client config file to 192.168.418.1 however when the
| > > second
| > > and third remote offices are connected they will then suffer the same
| > > problem.
| > > If I delete the Default Gateway line completely from the client
config
| > > file
| > > will this cause any unexpected problems/errors?
| >
| >
| >
|

.

Prev by Date: Re: OT- Veritas Backup
Next by Date: RE: SBS2003/ISA2004 question
Previous by thread: RE: Default Gateway on VPN subnets
Next by thread: Licenses reset to 5 after every reboot!
Index(es):
- Date
- Thread

Relevant Pages

Re: [Full-disclosure] Remote Desktop Command Fixation Attacks
... This set of steps is redundant in many places, and it's also enormously expensive, since you're using no less than three different expensive bits of networking hardware (AP, PIX, VPN Concentrator), in addition to a bunch of x86 server hardware, windows server licenses, and at least one ISA license. ... Your computers necessarily don't have full access to your network infrastructure when they aren't logged on, so GPOs, software updates, etc can't be applied at the times you want them to be applied. ... Turning on, enabling, and implementing every possible security setting and device you think of is not defence in depth, and will probably only have two effects - your users won't use your wireless network, and you'll burn so much cash you won't have any left to spend on *useful* security measures. ...
(Full-Disclosure)
Re: VPN with SBS 2003 (not R2) and DSL.
... Reading property value for VPN returned OK ... Reading VPN Server Name returned OK ... identical network cards. ... it seems doubtful that SBS will work properly with two NICs ...
(microsoft.public.windows.server.sbs)
RE: VPN Connection Problems
... Note that we are able to successfully VPN into the office. ... to browse the network, RDP to the server or even ping the server. ... > This newsgroup only focuses on SBS technical issues. ...
(microsoft.public.windows.server.sbs)
Re: VPN clients unable to connect to other resources.
... on the SBS 2003 server just not sure where to go for help on it. ... Next time I'm at my home PC, I'll VPN in and see what IP info I'm getting ... client PC on your LAN, you should be able to do so from a remote VPN client, ... get the network path was not found. ...
(microsoft.public.windows.server.sbs)
Re: Dual NICs, Routing Problem
... There can only be one default gateway (unless you are using extra stuff as ... network that is NOT directly attached to one of your interfaces. ... >> Do all the hosts on 192.1.36.0 know that if they want to talk to any host on ... Here, the web server needs to know the IP of eth0 on the DataBase Server, ...
(alt.os.linux.suse)