Announcement

Collapse
No announcement yet.

Site VPN for routing

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • Site VPN for routing

    Hi, I don't know if this is really possible, but anyway I'll ask...

    Our Internal Network is behind a ISA 2006 firewall..

    We have a customer that has a PPTP VPN enabled, and some of our employees connect to this customer.. The thing is that we experience that when more thant 2 of our employees connect, the VPN starts to drop.

    So my idea is to make a VPN connection from the ISA Server to our customer using the site VPN assitant, so there will be a link to our customer always, and then I want our users in the internet network to access using this link, so they don't have to dial a VPN connection each..

    So I did setup this Site VPN in ISA server and succesfully connected to out customer. Now there is a new network that has the IP addresses of the internal machines of our customers, and I also created a rule to allow traffic from ISA Server and our internal network to our customer's network.

    Now the problem is that I can only ping and access our customers machine from the ISA Server, but not from the machines in our internal network..

    Any ideas of what can be wrong??
    Attached Files

  • #2
    Re: Site VPN for routing

    Hmmm what happens with for example a traceroute?
    Is ISA server your default gateway?
    Have you create network relationships?
    Have you (re-)checked your access rules?
    Marcel
    Technical Consultant
    Netherlands
    http://www.phetios.com
    http://blog.nessus.nl

    MCITP(EA, SA), MCSA/E 2003:Security, CCNA, SNAF, DCUCI, CCSA/E/E+ (R60), VCP4/5, NCDA, NCIE - SAN, NCIE - BR, EMCPE
    "No matter how secure, there is always the human factor."

    "Enjoy life today, tomorrow may never come."
    "If you're going through hell, keep going. ~Winston Churchill"

    Comment


    • #3
      Re: Site VPN for routing

      Thanks for your answer,

      Actually you gave me the idea that got this issue solved..

      My mistake was I created a Network Rule that routed the traffic from our Internal Network to our customer's network..

      Instead of this, I created a rule to use NAT between the networks, and now the VPN Tunnel is working perfectly...

      Thanks...

      Comment


      • #4
        Re: Site VPN for routing

        Routing rule should usually work.
        Is their some overlap in subnets?
        Marcel
        Technical Consultant
        Netherlands
        http://www.phetios.com
        http://blog.nessus.nl

        MCITP(EA, SA), MCSA/E 2003:Security, CCNA, SNAF, DCUCI, CCSA/E/E+ (R60), VCP4/5, NCDA, NCIE - SAN, NCIE - BR, EMCPE
        "No matter how secure, there is always the human factor."

        "Enjoy life today, tomorrow may never come."
        "If you're going through hell, keep going. ~Winston Churchill"

        Comment

        Working...
        X