VPN configured, but cannot see the network

[dlhsu]

Hi,

I was wondering if someone could help me a little bit. I am trying to create a VPN connection between work and home. I am sitting behind a netgear MR314 wireless router. I use comcast with DHCP. The small office that I am connecting with has a Netopia Cayman 3000 router with a linksys BEFSX41 VPN router behind it. After a lot of work, I was able to authenticate an IPsec VPN tunnel with the linksys using the SSH Sentinel software. My home network is 192.168.0.x and the small office is 192.168.1.x. I tried pinging computers at the office, but no response. Everything is windows based. Does anybody have any clue as to why I can't see the servers in the office? Any help would be appreciated. Thanks in advance,

-David

PS I even setup a static route on my netgear router... but I am not sure it is correct.

 

[rubbaninja]

I don't know if this will do you any good but... it's possible that your on doesn't have a master browser. This will probably make your system take up to 15 minutes to build a browse list. Enable computer browser service on your workstation to maybe help push it along.

Also, enable tcp/ip over netbios and set your tcp/ip netbios setting to default (use netbios setting from DHCP)

Also, make sure your vpn device has knowledge of the networks you want to go to. My cisco vpn concentrator requires entry of subnets that are outside it's own.

Good luck

 

[ChicagoTechNet]

We need to fix ping issue first. use tracert office ip to find out where it stops. or post the result of ipconfig /all here.

Robert Lin, MS-MVP, MCSE & CNE
Windows, Network and How to at

http://www25.brinkster.com/ChicagoTech

 

[Eric777]

If the connection for the tunnel is successful, try going into the settings for the network card on the remote computer and under the TCP settings enter the name of a DNS server for the network you are trying to connect to. If there is no DNS server on the network, try going into the lmhosts.sam file and manually entering the IP addresses and names for the PC's you are trying to connect to.

 

[manojsharma]

I am having similar type of problem. i can access network from home (that is remote pc from internet )but i am not able to log into domain controller. The network logging as configured requires netbios. Any idea why it is so and how can i access domain controller.

 

[dlhsu]

Hi Robert,

I tried doing a tracert to 192.168.1.x and all it returns are "request time out" messages. I do have a static route entry on my router for 192.168.1.0 with a netmask of 255.255.255.0 to the VPN server... Please let me know if you need information... Thanks again for your help,
-David



Also, I did a ipconfig /all and here is the output.
Windows 2000 IP Configuration

Host Name . . . . . . . . . . . . : DHSUT21
Primary DNS Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : attbi.com

Ethernet adapter {870F0ACF-B338-44E8-9F30-E2FD59B1AA00}:

Media State . . . . . . . . . . . : Cable Disconnected
Description . . . . . . . . . . . : SSH Virtual NIC
Physical Address. . . . . . . . . : 02-00-00-00-01-00

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Cable Disconnected
Description . . . . . . . . . . . : 3Com 10/100 Mini PCI Ethernet Adapt
r
Physical Address. . . . . . . . . : 00-00-86-4B-4D-73

Ethernet adapter Local Area Connection 2:

Connection-specific DNS Suffix . : attbi.com
Description . . . . . . . . . . . : NETGEAR MA401 Wireless PC Card
Physical Address. . . . . . . . . : 00-30-AB-0F-5E-12
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IP Address. . . . . . . . . . . . : 192.168.0.3
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DNS Servers . . . . . . . . . . . : 192.168.0.1
Lease Obtained. . . . . . . . . . : Saturday, July 12, 2003 11:18:42 AM
Lease Expires . . . . . . . . . . : Tuesday, July 15, 2003 11:18:42 AM

 

[ChicagoTechNet]

many questions here.

1. tracert: if you have correct setup, tracert should pass your gateway to the remote offcie lan. if you got time out, can you ping the gateway?

2. Ipconfig /all: if you were connecting to VPN via the INternet, you should have two conenctions. The ipconfig shows just one connection.

Robert Lin, MS-MVP, MCSE & CNE
Windows, Network and How to at

http://www25.brinkster.com/ChicagoTech

 

[dlhsu]

Hi Robert,

Which gateway? There is a gateway address for both the Cayman 3000 and Linksys VPN router. I am only able to ping the gateway for the Cayman... but I could always do that, with or without the VPN connection.

As far as the ipconfig output... yes, now that I look at it, it shows my wireless connection... there is a connection for the SSH Virtual NIC, but no additional information...

Although, the SSH Sentinel software says that I am successfully connected... maybe I am not... is that possible?

Thanks,
-David

 

[dlhsu]

Hi Robert,

I checked my VPN router to see if I am connecting... and it shows a connected status. How is it possible that I am able to create a VPN connection and yet my ipconfig on my home laptop shows only one? Thanks for all your help/advice,

-David

 

[rubbaninja]

Is there a firewall in the way? We have our VPN Device hanging off of our PIX. you cannot do any ICMP traffic.

Just a thought.

 

[vuongxibul]

Hi,
If possible, please show your network diagram here, we will try to analyst.
But first of all, please check you permit your VPN client IP connect to your office. That mean you can ping to your computer in office.
you should follow step:
Check target you would like to ping have IP default gateway to VPN server.
Check VPN server permit connection between remote VPN client and local network behind VPN server. Because, when you connected to VPN server, you just only have permision to establish tunnel.
hope helpful