Request for support VPN connection

4 posts / 0 new
Last post
Pummie
Pummie's picture
Offline
Last seen: 5 years 1 month ago
Joined: 2011-10-27 17:05
Request for support VPN connection

 

Dear Everyone,

 

I trust 2012 is good to all of you! Some of us begin with a lot of errors in our systems and we need urgent help!

 

I have a VPN which is not working and to my knowledge I’ve picked up that after the vpn connection has been established, my DHCP server / DHCP relay agent is not assigning server options e.g. gateway, subnet maks which is \24, instead vpn clients are using the default mask which  is broadcast!

 

The ip address assigned to the vpn client is within the scope but you can’t ping anything on the local LAN because of the mask!

Can anyone think of what could be the reason for this?

 

DC2003 and ISA 2006,

 

Regards,

Pummie Ndabangaye

Network Admin:KSD Municipality

51Sutherland Street, Office 146 Munitata Bldng,Mthatha

PO Box 45, Mthatha, 5099

Tel:  (047) 501 4161 / Fax:  (086) 660 2089 /  Cell:083 444 5475

Email:  pummien@ksd.org.za/ Website: www.ksd.org.za

Stefan Stautner
Stefan Stautner's picture
Offline
Last seen: 5 years 5 months ago
Joined: 2011-12-08 16:08
Hi, I would have to take a

Hi,

I would have to take a look at the VPN settings, I would assume you did it from your ISA server. It might be a problem on the ISA settings preventing it from allocating proper IP’s with all the settings. If you want you can give me remote access and I can take a look. One thing you can also check is are you managing your own firewall? Are all the relevent ports open for DHCP and DNS? For DHCP as far as I can remember its port 68/67 and for DNS it’s 53 and 1023.

You can also forward me print screens of the configs and also what is the public IP that you got assigned for this.

Hope this helps

Pieter van den Berg
ICT : Systems Administrator
012 369 8013
 pvdberg@salga.org.za
 071 884 5665
www.salga.net
Block B, Menlyn Corporate Park, 175 Corobay Ave, Cnr Garsfontein Rd Waterkloof Glen X11, Pretoria

Stefan Stautner
Stefan Stautner's picture
Offline
Last seen: 5 years 5 months ago
Joined: 2011-12-08 16:08
Hi Pummie, I suggest doing

Hi Pummie,

I suggest doing to following:

Have a look at the DHCP settings and confirm everything is working fine, maybe recreate a scope with IP’s that are only for VPN connections. Then make sure your ISA settings are working correctly. I would suggest deleting the VPN config on the ISA server and following the procedure below:

Hope this helps

http://www.isaserver.org/img/upl/vpnkitbeta2/dhcprelay.htm

Pieter van den Berg ICT : Systems Administrator 012 369 8013  pvdberg@salga.org.za  071 884 5665  www.salga.net Block B, Menlyn Corporate Park, 175 Corobay Ave, Cnr Garsfontein Rd Waterkloof Glen X11, Pretoria

Pummie
Pummie's picture
Offline
Last seen: 5 years 1 month ago
Joined: 2011-10-27 17:05
Hi Pieter, As recommended,

Hi Pieter,

As recommended, I’ve rechecked my rules and the first thing I changed was the protocol to “Allow All Outbound traffic” and my vpn clients are able to communicate with internal network now!

I was also able to remotely connect to my DC with no problems!

Hey, thanks for your information and please if there is anything else you picked up, I would be delighted if you share!

And now, to the entire team of SALGA, thank you for your support and a quick response! Now I can finally receive assistance on my billing run as this was the main cause of contacting those who mean business and excellent service to the Local Government!

Thank you once again!

Kind Regards,

Pummie

Log in or register to post comments