Setting up routes to allow VPN clients to access the internet thru LAN gateway

Setting up routes to allow VPN clients to access the internet thru LAN gateway

Post by arric » Sun, 10 Sep 2006 10:15:47


I'm having trouble figuring out how to setup the routing on a
Windows2003 VPN server. The Win2003 machine has two NIC's, one
connected to the public network and the second on the 192.168.0.x
private network. The private network has a NAT box (192.168.0.1)
handling the requests to the internet coming from machines attached to
the private network.

Access to all machines on the private network from the VPN clients is
working. The issue I'm having is forcing the internet traffic generated
by VPN clients to go to the 192.168.0.1 gateway and not somewhere else,
like the the gateway of the 2003 machine's public NIC. In addition, the
2003 machine should use the gateway of its public NIC for all traffic
that it itself generates. For instance, it can't use the "private"
gateway to respond to VPN connection requests because that won't work
with the way the NAT is configured and I don't want to place the entire
2003 machine behind the NAT.

I think this should be a fairly simple matter of getting the static
routes correct. I don't want to configure the VPN clients to use split
tunneling. Any help would be appreciated.

Thanks,
Anthony
 
 
 

Setting up routes to allow VPN clients to access the internet thru LAN gateway

Post by arric » Thu, 14 Sep 2006 01:30:57

I found this thread,

http://www.yqcomputer.com/ #

that pretty much convinced me that this configuration is impossible
without some way to route packets based on their source IP. As far as I
can tell there's no way to get this to work using Windows2003.

Anthony