WinGate Forums

[Rigord]

Hey guys. I know this have been posted before, but I still can't make it work. I must be missing something.


My LAN (LAN1):

- 3 Windows 2000 Pro SP4 workstations including one acting as the VPN
Server. Norton Internet Security 2003 is deactivated on each computer. Each computer has a fixed local IP address (192.168.1.x), and a signle NIC.

- These are connected to the Internet through a Linksys Router BEFW11S4
(firmware version 1.45, 28/02/2003). The router has a dynamic WAN IP address assigned by my cable ISP.

- Each LAN workstation runs the DNS2go service, effectively giving each of
them an independant DNS name (xxx.dns2go.com) but giving away the same WAN IP address. This allows me to remotely access the router configuration utility, or the computers (with VNC), whenever one or more LAN computers is on. RIP client service is installed and running automatically on each computer (except VPN server)

- the VPN server runs WinGate VPN in a host configuration

- Router's configuration:

I forwarded ports 47, 50, 137-139 (for NETBIOS browsing), 1701 (for L2PT),
1723 (for PPTP), 809 (WinGate VPN) to the VPN
server's IP (do I really need to open PPTP and L2PT ports?). For these I selected UDP and TCP protocols. Multicast, IPSec,
PPTP passthroughs are enabled. There is no SPI option to enable or disable. RIP2 is activated for TX and RX



The VPN client

- Windows 2000 Pro SP4 laptop on a LAN (LAN2) behind a proxy computer
connected via ADSL to the Internet. I have no authorization to access and
modify settings on this router computer. NIS 2003 is deactivated on the laptop.

- IP is 192.168.0.1 (so it is located on a different subnetwork than LAN to be joined)

- The laptop can ping and join the VPN host, access its shares, open document, remotely print. No problem.


However I can't see, ping and access computers located on the VPN server's LAN.

The Wingate VPN setup guide says I have to :

- make the VPN Server the default gateway of the LAN clients, but I have only one NIC on the server. And even if I had two NIC, this server is not to be up permanently. If it was the default gateway, other LAN computers could not access the internet through the router in case the VPN server is off.
- install RIP client on LAN client, so they can talk back to the vpn joiner. That I did, to no avail.
- add a static route. With IP addresses given earlier, could someone tell me how exactly I should do that. I'm not sure the example provided in the setup guide fits my need.


Thanks for your help!

[Pascal]

It needs to be a RIP v 2 client (Just a thought).

Then, for the rest of it:

Your static route should ensure that the network on your laptop VPN client (192.168.0.1) is available from the LAN client machines. This means you must point any traffic destined for 192.168.0.1 through your VPN server (192.168.1.x).

[Rigord]

Everything works fine! I just had to check off the "Publish learned routes on VPN". It wasn't by default. Maybe this should be added in the Setup Guide.

Thanks for the quick feedback