WinGate Forums

[richieprice]

I am trying to connect to my corporate lan from home using Wingate VPN.

The corporate LAN accesses the internet through a DLINK DI-604 Broadband router which has a static IP address. Each machine on the LAN specifies the router's local IP as the gateway to allow internet access.

Is it possible to use Wingate VPN to access my Lan using this setup ?

I have installed VPN server on one of the machines on the LAN but this is on the other site of the router with a DHCP assigned local IP address so it cannot be seen directly from my machine at home.

I have also tried installing VPN server on my machine at home as this has a direct internet connection and installing the VPN client on one of the machines on the corporate LAN. When I do this I can see the names of the machines of the corporate LAN from my home pc but I cannot access them.

What can I do to make it work?

Any help would be greatly appreciated.

[Pascal]

Hi,

There are a few simple things you have to do. In your case the ideal solution would depend on where you want to host the Server. Unless your home connection is on 24/7, I'd recommend hosting behind the Corporate lan.

To do that, you need to ensure that the broadband router will forward all traffic on port 809 (TCP and UDP) to your VPN Server. That's step one. Step two has two alternatives. One: add a static route to all machines that will need to participate in the VPN. This route should point any traffic destined for your home lan to the VPN Server. Two: Install a RIP v 2 listener on each machine that has to participate in the VPN.

At home, your setup should be correct already for joining a VPN, except you'll join the static external IP of the router.

In the reverse case, you should only need to follow Step two. (Making sure the machines behind the router know how to get to your home lan)

[shm]

I have Wingate VPN on my office server subnet 192.168.0.x and I installed the RIP client on one of my office stations on the same subnet, with the Wingate server as the gateway. At home, I have a dsl router doing DCHP/NAT on subner 192.168.1.x and I installed the VPN client and RIP client as well. I can connect to the office VPN and see all the network share names, but I cannot browse into any of the office stations, including the one with the RIP client. I cannot PING anything on 192.168.0.x. It looks like some sort of routing issue to me, but I haven't figured out what.

[Pascal]

On your DSL router, double check that you are forwarding port 809 (TCP and UDP) to the VPN Client. You do not need the RIP client on the VPN Client machine (Only on machines behind it)

You will only be able to access machines in the office that are configured to route through the WinGate VPN for the remote subnet.

Would you be interested in a document, that details some troubleshooting steps, etc. ?

[shm]

Yes, I would like to see the troubleshooting document.

[larsdennert]

...and also the vpn server should have a static internal address, not a DHCP one otherwise forwarding 809 will be inconsistant.

We have just that setup:

vpn server on internal static 192.168....
static ip router forwarding 809 to the static ip on internal server
RIP on LAN machines "behind" server

Client machines just use the client software.