Workstation cannot access remote resources via demand-dial VPN
Q1: I have a hardware router, it is IP is 192.168.71.1, and I have two computers, one is 192.168.71.100, another is 192.168.71.101, both access Internet by the router, so they have gateway set to 192.168.71.1. I setup RRAS on the 100 server, and Demand-Dial VPN interface. It works fine on 100, I can access remote network. (IP range is 192.168.0.?)
What I want to achieve now is make 101 machine access
the remote network by VPN on RRAS. It seems I just need redirect traffic on
A1: It depends on your
router, you may be able to point all traffic from the router to 192.168.0.0
via the RRAS. If not, you need to modify the routing table on
192.168.71.101, for example, route add 192.168.0.0 mask 255.255.255.0
Q2: I did that, but it
doesn't work. someone said I need add NAT on my
A2: The reason it doesn't work is this. When you make a VPN connection, the VPN "server" which you connect to sets up a host route back to the "client" machine. So the calling machine can route traffic through the VPN connection. Other machines cannot use the connection, because the server does not have a route for them - it only has a route through the tunnel for the one machine. The second machine would need to make its own VPN connection to the remote site.
The proper way to link one subnet to another is to use
a LAN to
Q3: I want to use a RRAS
because when I call in same remote network from
A3: To use a LAN to LAN
VPN, both servers must be configured with
This web is provided "AS IS" with no warranties.
Copyright © 2002-2017 ChicagoTech.net, All rights reserved. Unauthorized reproduction forbidden.