1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Am I crazy to think I can do this?!?!?!

Discussion in 'Cisco Small Business Routers and VPN Solutions' started by Scott E., Mar 9, 2007.

  1. Scott E.

    Scott E. LI Guru Member

    I am trying to give our employees remote access to our network. I have an RV082 that I have as our VPN termination point. I am using QuickVPN (latest firmware for both router and QuickVPN). I can VPN into the router, I can navigate to shares on my SBS2k3 server. I can even log into the router and make changes. I think that at this point, if I start Outlook, I should be able to connect to Exchange (also on the SBS2k3). Am I wrong about thinking this? Is there something that I need to do the server to allow the connection? Or am I "on the network, just like if I was connected to via the switch"?
    I was trying to use the RV082 for the DHCP but after reading old posts by Stonecat, I enabled the server to handle DHCP and point all DNS requests to the server, which will forward any non-resolvable names to the ISP's DNS servers.
    Basically, I have access to the shared folders on our server, but not the Exchange server. Am I crazy to think that when I connect via QuickVPN that it is like I logged onto the network locally, with the same access rights?!? It is driving me NUTS. I am at a loss for other things to try to access exchange server. PLEASE help!

    Scott E.
     
  2. aviegas

    aviegas Network Guru Member

    QuickVPN and the way IPsec is handled by Windows will make you part of the local network, but your IP address will the be "external" ip address. So if your exchange server is only configured to handle "local" addresses, it will refuse the connection.

    For example: using the default 192.168.1.0/24 network, assume your exchange is 192.168.1.10. You connect from another place with ip, let's say 200.42.68.20 and use QuickVPN to connect to you network.

    The exchange server will see you at 200.42.68.20 and not at a "local" address. It's "like" the firewall is letting you come through.

    So the key probably lies with the server.
     
  3. TazUk

    TazUk Network Guru Member

    Have you tried reducing the MTU on the remote clients?
     
  4. ifican

    ifican Network Guru Member

    Are you logging into the server via its "name" or ip?
     
  5. DocLarge

    DocLarge Super Moderator Staff Member Member

    As a test, create an account on the RV082's onboard pptp server and then try connecting with the microsoft pptp vpn client and see what the differences are. Ideally, a better way to try would be for you to forward port 1723 from your rv082 to your small business server (after it's set up for RRAS of course) and then try and connect with the microsoft vpn client.

    If it truly is something with the server and you make the connection to your exchange server using the microsoft vpn client from either the rv082 pptp server or by connecting to the server via RRAS, then (as an earlier poster stated) it's definitely your server blocking the connection based on a default policy.

    Jay
     
  6. Scott E.

    Scott E. LI Guru Member

    I guess my question is: should I be able to connect to my Exchange server using the QuickVPN client? Or am I beating my head up against a wall. It seems that SBS2k3 REALLY wants to be the VPN termination point. I may just punt on the idea of using QuickVPN and just forward the ports. Do I have to forward IPSEC, l2tp, and GRE (no selection available) also? Thanks for the info!

    Scott E.
     

Share This Page