Re: Redirect to VPN tunnel?
- From: "Kerry Brown" <kerry@xxxxxxxxxxxxxxxxxxx*a*m>
- Date: Wed, 14 Jan 2009 14:06:03 -0800
At the remote site you need to change the DHCP options on the router so that the clients are using the main office DNS and WINS. They should both be pointing to 192.168.2.2. You may also have to setup a DNS search suffix of domain.local. Some routers can do this, some can't. If you can't set the domain in the router options you'll have to manually set each computer in the TCP/IP advanced properties. I'm not sure how to do all this on a Draytek router. You'll have to check the manual or phone their support.
Without DNS and WINS pointing to the SBS server the remote computers have no way to resolve names from the main office. As it is now you should be able to access the main office computers by IP address. Ping 192.168.2.2 or ping 192.168.2.14 should work. Ping Machine1 won't until DNS and WINS are set up.
How many computers are at the remote site and what are they going to be accessing at the main office? A site to site VPN is fine for light use. If you are using standard broadband, the users will find the connection very slow if they are loading large files, accessing a database, or have folders redirected to the SBS server. Are you planning on joining the remote computers to the domain? You may want to experiment with one computer first before doing this. With most site to site VPNs using broadband you will probably have problems with very slow logons due to group policy processing. I've found site to site VPNs really only useful if the remote office has a couple of computers that aren't joined to the domain and the users only access small files for word processing and such. Anything more than that and you want to start looking at installing a domain controller at the remote office.
--
Kerry Brown
MS-MVP - Windows Desktop Experience: Systems Administration
http://www.vistahelp.ca/phpBB2/
http://vistahelpca.blogspot.com/
"Keith Whittle" <KeithWhittle@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message news:EBC8BB6C-4207-47FB-A78B-855EDBDA8457@xxxxxxxxxxxxxxxx
Here you go Kerry.
ipconfigs from both sites
Main Office Computer
Windows IP Configuration
Host Name . . . . . . . . . . . . : Machine1
Primary Dns Suffix . . . . . . . : domain.local
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : domain.local
Wireless LAN adapter Wireless Network Connection 6:
Connection-specific DNS Suffix . : domain.local
Description . . . . . . . . . . . : Belkin 802.11g Network Adapter #4
Physical Address. . . . . . . . . : 00-11-50-F6-3F-9F
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::94fb:94b5:2c95:ccec%17(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.2.14(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : 05 January 2009 12:32:02
Lease Expires . . . . . . . . . . : 22 January 2009 17:40:47
Default Gateway . . . . . . . . . : 192.168.2.1
DHCP Server . . . . . . . . . . . : 192.168.2.2
DNS Servers . . . . . . . . . . . : 192.168.2.2
Primary WINS Server . . . . . . . : 192.168.2.2
NetBIOS over Tcpip. . . . . . . . : Enabled
Ethernet adapter Local Area Connection:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom 440x 10/100 Integrated
Controlle
r
Physical Address. . . . . . . . . : 00-1A-A0-08-8F-08
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Tunnel adapter Local Area Connection* 7:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.domain.local
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Tunnel adapter Local Area Connection* 11:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : domain.local
Description . . . . . . . . . . . : isatap.domain.local
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Tunnel adapter Local Area Connection* 10:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.domain.local
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Tunnel adapter Local Area Connection* 9:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . :
isatap.{99241BB6-A508-4289-8241-8BA615538
C88}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Remote Office Computer
Windows IP Configuration
Host Name . . . . . . . . . . . . : primary
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Mixed
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
Ethernet adapter Local Area Connection 5:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : NVIDIA nForce Networking
Controller
Physical Address. . . . . . . . . : 00-04-0B-80-80-80
Dhcp Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IP Address. . . . . . . . . . . . : 192.168.1.10
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DNS Servers . . . . . . . . . . . : 192.168.1.1
Lease Obtained. . . . . . . . . . : 14 January 2009 20:34:52
Lease Expires . . . . . . . . . . : 17 January 2009 20:34:52
"Kerry Brown" wrote:
Can you post the results of ipconfig /all from a computer at each office?
--
Kerry Brown
MS-MVP - Windows Desktop Experience: Systems Administration
http://www.vistahelp.ca/phpBB2/
http://vistahelpca.blogspot.com/
"Keith Whittle" <KeithWhittle@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:AB924179-5767-4555-93D3-80C2F420545D@xxxxxxxxxxxxxxxx
> Dear All
>
> I have created a VPN tunnel between our two routers (Main Office and
> Remote
> Office) which is running, stable and encrypted. However the remote > office
> is
> unable to establish a connection with Exchange or access the Intranet.
>
> I have had the router company look over our settings and they have
> confirmed
> that we are set up correctly and that all the correct ports are open > but
> have
> said "As far as router is concerned it is doing its job as tunnel is > up
> and
> ports are open. Now you need to check the settings on the SBS or
> firewall. Something is restricting the access on the server."
>
> Can someone advise on what I am forgetting or missing. Is there > something
> that I need to redirect/forward to the router? All thoughts gratefully
> recieved!
>
> We are running SBS2003R2
> Open Ports are:
> 443
> 4125
> 1723
> 444
> 3389
> 25
> 110
> 8530
> 467
>
> Many Thanks in advance
> Keith
- References:
- Redirect to VPN tunnel?
- From: Keith Whittle
- Re: Redirect to VPN tunnel?
- From: Kerry Brown
- Re: Redirect to VPN tunnel?
- From: Keith Whittle
- Redirect to VPN tunnel?
- Prev by Date: Re: Redirect to VPN tunnel?
- Next by Date: Re: SBS without Exchange, SharePoint?
- Previous by thread: Re: Redirect to VPN tunnel?
- Next by thread: Re: Redirect to VPN tunnel?
- Index(es):
Relevant Pages
|
Loading
