Re: [H] VPN question
So long as that isn't your ISP-assigned IP. :) Definitely understand on VMWare Workstation, but it still has some advanced network mapping capabilities, including the ability to run bridged, host NAT, isolated, etc. -Original Message- From: Hardware On Behalf Of Bobby Heid Sent: Monday, November 23, 2020 6:04 PM To: hardw...@lists.hardwaregroup.com Subject: Re: [H] VPN question Thank you all for the responses. I went to whatsmyip.com on both the host and the VM and both returned the same IP address. So I think I am good. Remember that I am running VMWare Workstation. Not the same as a regular VMWare host. Thanks, Bobby -Original Message- From: Hardware On Behalf Of Greg Sevart Sent: Monday, November 23, 2020 5:13 PM To: hardw...@lists.hardwaregroup.com Subject: Re: [H] VPN question If you're running the VPN on the host, it's unlikely that the guest would be using the VPN. For that to work (absent some magic in NordVPN), your VMware network as presented to the guest would need to be bound to the VPN virtual network adapter, if NordVPN even uses one. Use an IP lookup tool to confirm, but my expectation would be that you will need to establish a VPN from within any guests you want running behind the VPN in addition to the host. -Original Message- From: Hardware On Behalf Of Bobby Heid Sent: Sunday, November 22, 2020 8:33 AM To: hardware@hardwaregroup.com Subject: [H] VPN question Hey, I am running NordVPN and VMWare 14 workstation on my Win 10 PC. If I am running a VM on this PC, do I also need to install the VPN on the VM? Or is it protected by the VPN on the host? Thanks, Bobby
Re: [H] VPN question
Thank you all for the responses. I went to whatsmyip.com on both the host and the VM and both returned the same IP address. So I think I am good. Remember that I am running VMWare Workstation. Not the same as a regular VMWare host. Thanks, Bobby -Original Message- From: Hardware On Behalf Of Greg Sevart Sent: Monday, November 23, 2020 5:13 PM To: hardw...@lists.hardwaregroup.com Subject: Re: [H] VPN question If you're running the VPN on the host, it's unlikely that the guest would be using the VPN. For that to work (absent some magic in NordVPN), your VMware network as presented to the guest would need to be bound to the VPN virtual network adapter, if NordVPN even uses one. Use an IP lookup tool to confirm, but my expectation would be that you will need to establish a VPN from within any guests you want running behind the VPN in addition to the host. -Original Message- From: Hardware On Behalf Of Bobby Heid Sent: Sunday, November 22, 2020 8:33 AM To: hardware@hardwaregroup.com Subject: [H] VPN question Hey, I am running NordVPN and VMWare 14 workstation on my Win 10 PC. If I am running a VM on this PC, do I also need to install the VPN on the VM? Or is it protected by the VPN on the host? Thanks, Bobby
Re: [H] VPN question
If you're running the VPN on the host, it's unlikely that the guest would be using the VPN. For that to work (absent some magic in NordVPN), your VMware network as presented to the guest would need to be bound to the VPN virtual network adapter, if NordVPN even uses one. Use an IP lookup tool to confirm, but my expectation would be that you will need to establish a VPN from within any guests you want running behind the VPN in addition to the host. -Original Message- From: Hardware On Behalf Of Bobby Heid Sent: Sunday, November 22, 2020 8:33 AM To: hardware@hardwaregroup.com Subject: [H] VPN question Hey, I am running NordVPN and VMWare 14 workstation on my Win 10 PC. If I am running a VM on this PC, do I also need to install the VPN on the VM? Or is it protected by the VPN on the host? Thanks, Bobby
Re: [H] VPN question
Should be protected the way you have it but run a IP scan on the VM and make sure it is showing location of your VPN and not your real IP addy. Most providers have setups for routers so everything on your network is protected. lopaka On Sun, Nov 22, 2020 at 6:33 AM Bobby Heid wrote: > Hey, > > > > I am running NordVPN and VMWare 14 workstation on my Win 10 PC. If I am > running a VM on this PC, do I also need to install the VPN on the VM? Or > is > it protected by the VPN on the host? > > > > Thanks, > > Bobby > >
Re: [H] VPN question
Just do a what’s my IP from the host. > > On Nov 22, 2020 at 9:33 AM, mailto:bh...@sc.rr.com)> wrote: > > > > Hey, I am running NordVPN and VMWare 14 workstation on my Win 10 PC. If I am > running a VM on this PC, do I also need to install the VPN on the VM? Or is > it protected by the VPN on the host? Thanks, Bobby > >
[H] VPN question
Hey, I am running NordVPN and VMWare 14 workstation on my Win 10 PC. If I am running a VM on this PC, do I also need to install the VPN on the VM? Or is it protected by the VPN on the host? Thanks, Bobby
[H] VPN
I have to spend some time in the hospital. They will have wireless internet service, but I need to be able to make secure transactions from my laptop to monitor things, and pay my bills. Is my best bet to use a VPN? I know I could use my home cable service with something like Hamachi LogMeIn but if something goes down with my home network then I won't be able to fix it so I am thinking of signing up to a third party service where reliability and security is paramount. Any suggestions or referrals? thanks
Re: [H] VPN
If you are using HTTPS to access those services, you should be ok unless they are proxying all SSL connections. To test if they are, visit a webpage like your bank or email at home and take a look at the certificate (the method of doing so depends on which browser you are using). See who signed the cert for that page - for example, Google's certs are signed by Thawte. Then go to the hospital and browse to the page again over HTTPS. Take a look at the cert, and if it is someone different who signed it (for example MY_ HOSPITAL instead of Thawte for Google) then you know they are proxying all SSL traffic. Anything you do access over normal HTTP will be viewable on the network. I have used a few different VPN services over the years, all with good results. SwissVPN and iPredator VPN most recently. - Brian On Fri, Oct 5, 2012 at 5:54 PM, Winterlight winterli...@winterlight.orgwrote: I have to spend some time in the hospital. They will have wireless internet service, but I need to be able to make secure transactions from my laptop to monitor things, and pay my bills. Is my best bet to use a VPN? I know I could use my home cable service with something like Hamachi LogMeIn but if something goes down with my home network then I won't be able to fix it so I am thinking of signing up to a third party service where reliability and security is paramount. Any suggestions or referrals? thanks
Re: [H] VPN connection seals computer off from LAN
I had the same issue it was down to all 10. Addresses being routed down the VPN. I changed my home network to 192.168.. and now everything works fine, Gary Hunter Consulting Engineer Travelport GDS T: (+1) 303 - 397 - 5035 M:(+1) 720 - 231 - 0965 E: gary.hun...@travelport.com SITA: HDQOK1G Travelport Product Development Center 6901 S Havana St Centennial, CO 80112 -Original Message- From: hardware-boun...@hardwaregroup.com [mailto:hardware-boun...@hardwaregroup.com] On Behalf Of Brian Weeden Sent: Sunday, April 25, 2010 10:45 AM To: hwg Subject: [H] VPN connection seals computer off from LAN This is very weird. I have a VPN setup and it's been acting weird - when I connect to it using one of the machines on my LAN, that machines effectively drops off the network. It can browse the internet just fine, but none of the other machines on the LAN can connect to it. Interestingly, although it says its LAN IP is still 10.0.1.2, I can't ping it with that IP. I have been using this VPN on this particular machine for months with no problems until recently. However, using the same VPN setup on another machine on the same LAN, it will connect to the VPN and still be visible on the LAN and can still connect to other clients on the LAN. I've double checked the VPN settings are they are exactly the same on both machines. Any ideas? --- Brian Weeden Technical Advisor Secure World Foundation http://www.secureworldfoundation.org +1 (514) 466-2756 Canada +1 (202) 683-8534 US If you are not the intended recipient of this e-mail message, please notify the sender and delete all copies immediately. The sender believes this message and any attachments were sent free of any virus, worm, Trojan horse, and other forms of malicious code. This message and its attachments could have been infected during transmission. The recipient opens any attachments at the recipient's own risk, and in so doing, the recipient accepts full responsibility for such actions and agrees to take protective and remedial action relating to any malicious code. Travelport is not liable for any loss or damage arising from this message or its attachments.
Re: [H] VPN connection seals computer off from LAN
That doesn't make any sense - 10. addresses cannot be routed via VPN, same as 192. Both of those address ranges are explicitly defined as private and cannot be routed on the Internet. The minute any packet with a 10. or 192. or any other private range hits an internet router it gets dropped. I think on my end the issue was with the public vs private network designations in Windows 7. I had the VPN connection defined as public which means it is untrusted and Windows won't allow network discovery or file sharing. I think somehow Windows got confused with the machine being on a private (trusted) LAN and public (untrusted) WAN at the same time. Not sure tho. --- Brian Weeden Technical Advisor Secure World Foundation http://www.secureworldfoundation.org +1 (514) 466-2756 Canada +1 (202) 683-8534 US On Tue, Apr 27, 2010 at 11:12 AM, Hunter, Gary gary.hun...@travelport.comwrote: I had the same issue it was down to all 10. Addresses being routed down the VPN. I changed my home network to 192.168.. and now everything works fine, Gary Hunter Consulting Engineer Travelport GDS T: (+1) 303 - 397 - 5035 M:(+1) 720 - 231 - 0965 E: gary.hun...@travelport.com SITA: HDQOK1G Travelport Product Development Center 6901 S Havana St Centennial, CO 80112 -Original Message- From: hardware-boun...@hardwaregroup.com [mailto: hardware-boun...@hardwaregroup.com] On Behalf Of Brian Weeden Sent: Sunday, April 25, 2010 10:45 AM To: hwg Subject: [H] VPN connection seals computer off from LAN This is very weird. I have a VPN setup and it's been acting weird - when I connect to it using one of the machines on my LAN, that machines effectively drops off the network. It can browse the internet just fine, but none of the other machines on the LAN can connect to it. Interestingly, although it says its LAN IP is still 10.0.1.2, I can't ping it with that IP. I have been using this VPN on this particular machine for months with no problems until recently. However, using the same VPN setup on another machine on the same LAN, it will connect to the VPN and still be visible on the LAN and can still connect to other clients on the LAN. I've double checked the VPN settings are they are exactly the same on both machines. Any ideas? --- Brian Weeden Technical Advisor Secure World Foundation http://www.secureworldfoundation.org +1 (514) 466-2756 Canada +1 (202) 683-8534 US If you are not the intended recipient of this e-mail message, please notify the sender and delete all copies immediately. The sender believes this message and any attachments were sent free of any virus, worm, Trojan horse, and other forms of malicious code. This message and its attachments could have been infected during transmission. The recipient opens any attachments at the recipient's own risk, and in so doing, the recipient accepts full responsibility for such actions and agrees to take protective and remedial action relating to any malicious code. Travelport is not liable for any loss or damage arising from this message or its attachments.
Re: [H] VPN connection seals computer off from LAN
They (RC1918 addresses) absolutely can be routed over a VPN. The whole idea is to encapsulate and encrypt packets--the internet routers never see the RFC1918 addresses. -Original Message- From: hardware-boun...@hardwaregroup.com [mailto:hardware- boun...@hardwaregroup.com] On Behalf Of Brian Weeden Sent: Tuesday, April 27, 2010 10:56 AM To: hardware@hardwaregroup.com Subject: Re: [H] VPN connection seals computer off from LAN That doesn't make any sense - 10. addresses cannot be routed via VPN, same as 192. Both of those address ranges are explicitly defined as private and cannot be routed on the Internet. The minute any packet with a 10. or 192. or any other private range hits an internet router it gets dropped. I think on my end the issue was with the public vs private network designations in Windows 7. I had the VPN connection defined as public which means it is untrusted and Windows won't allow network discovery or file sharing. I think somehow Windows got confused with the machine being on a private (trusted) LAN and public (untrusted) WAN at the same time. Not sure tho. --- Brian Weeden Technical Advisor Secure World Foundation http://www.secureworldfoundation.org +1 (514) 466-2756 Canada +1 (202) 683-8534 US On Tue, Apr 27, 2010 at 11:12 AM, Hunter, Gary gary.hun...@travelport.comwrote: I had the same issue it was down to all 10. Addresses being routed down the VPN. I changed my home network to 192.168.. and now everything works fine, Gary Hunter Consulting Engineer Travelport GDS T: (+1) 303 - 397 - 5035 M:(+1) 720 - 231 - 0965 E: gary.hun...@travelport.com SITA: HDQOK1G Travelport Product Development Center 6901 S Havana St Centennial, CO 80112 -Original Message- From: hardware-boun...@hardwaregroup.com [mailto: hardware-boun...@hardwaregroup.com] On Behalf Of Brian Weeden Sent: Sunday, April 25, 2010 10:45 AM To: hwg Subject: [H] VPN connection seals computer off from LAN This is very weird. I have a VPN setup and it's been acting weird - when I connect to it using one of the machines on my LAN, that machines effectively drops off the network. It can browse the internet just fine, but none of the other machines on the LAN can connect to it. Interestingly, although it says its LAN IP is still 10.0.1.2, I can't ping it with that IP. I have been using this VPN on this particular machine for months with no problems until recently. However, using the same VPN setup on another machine on the same LAN, it will connect to the VPN and still be visible on the LAN and can still connect to other clients on the LAN. I've double checked the VPN settings are they are exactly the same on both machines. Any ideas? --- Brian Weeden Technical Advisor Secure World Foundation http://www.secureworldfoundation.org +1 (514) 466-2756 Canada +1 (202) 683-8534 US If you are not the intended recipient of this e-mail message, please notify the sender and delete all copies immediately. The sender believes this message and any attachments were sent free of any virus, worm, Trojan horse, and other forms of malicious code. This message and its attachments could have been infected during transmission. The recipient opens any attachments at the recipient's own risk, and in so doing, the recipient accepts full responsibility for such actions and agrees to take protective and remedial action relating to any malicious code. Travelport is not liable for any loss or damage arising from this message or its attachments.
Re: [H] VPN connection seals computer off from LAN
Sorry, you're right. I use this VPN for my WAN traffic so that's what I was thinking of, but of course you can also use a VPN to connect two LANs as well. --- Brian Weeden Technical Advisor Secure World Foundation http://www.secureworldfoundation.org +1 (514) 466-2756 Canada +1 (202) 683-8534 US On Tue, Apr 27, 2010 at 12:16 PM, Greg Sevart ad...@xfury.net wrote: They (RC1918 addresses) absolutely can be routed over a VPN. The whole idea is to encapsulate and encrypt packets--the internet routers never see the RFC1918 addresses. -Original Message- From: hardware-boun...@hardwaregroup.com [mailto:hardware- boun...@hardwaregroup.com] On Behalf Of Brian Weeden Sent: Tuesday, April 27, 2010 10:56 AM To: hardware@hardwaregroup.com Subject: Re: [H] VPN connection seals computer off from LAN That doesn't make any sense - 10. addresses cannot be routed via VPN, same as 192. Both of those address ranges are explicitly defined as private and cannot be routed on the Internet. The minute any packet with a 10. or 192. or any other private range hits an internet router it gets dropped. I think on my end the issue was with the public vs private network designations in Windows 7. I had the VPN connection defined as public which means it is untrusted and Windows won't allow network discovery or file sharing. I think somehow Windows got confused with the machine being on a private (trusted) LAN and public (untrusted) WAN at the same time. Not sure tho. --- Brian Weeden Technical Advisor Secure World Foundation http://www.secureworldfoundation.org +1 (514) 466-2756 Canada +1 (202) 683-8534 US On Tue, Apr 27, 2010 at 11:12 AM, Hunter, Gary gary.hun...@travelport.comwrote: I had the same issue it was down to all 10. Addresses being routed down the VPN. I changed my home network to 192.168.. and now everything works fine, Gary Hunter Consulting Engineer Travelport GDS T: (+1) 303 - 397 - 5035 M:(+1) 720 - 231 - 0965 E: gary.hun...@travelport.com SITA: HDQOK1G Travelport Product Development Center 6901 S Havana St Centennial, CO 80112 -Original Message- From: hardware-boun...@hardwaregroup.com [mailto: hardware-boun...@hardwaregroup.com] On Behalf Of Brian Weeden Sent: Sunday, April 25, 2010 10:45 AM To: hwg Subject: [H] VPN connection seals computer off from LAN This is very weird. I have a VPN setup and it's been acting weird - when I connect to it using one of the machines on my LAN, that machines effectively drops off the network. It can browse the internet just fine, but none of the other machines on the LAN can connect to it. Interestingly, although it says its LAN IP is still 10.0.1.2, I can't ping it with that IP. I have been using this VPN on this particular machine for months with no problems until recently. However, using the same VPN setup on another machine on the same LAN, it will connect to the VPN and still be visible on the LAN and can still connect to other clients on the LAN. I've double checked the VPN settings are they are exactly the same on both machines. Any ideas? --- Brian Weeden Technical Advisor Secure World Foundation http://www.secureworldfoundation.org +1 (514) 466-2756 Canada +1 (202) 683-8534 US If you are not the intended recipient of this e-mail message, please notify the sender and delete all copies immediately. The sender believes this message and any attachments were sent free of any virus, worm, Trojan horse, and other forms of malicious code. This message and its attachments could have been infected during transmission. The recipient opens any attachments at the recipient's own risk, and in so doing, the recipient accepts full responsibility for such actions and agrees to take protective and remedial action relating to any malicious code. Travelport is not liable for any loss or damage arising from this message or its attachments.
Re: [H] VPN connection seals computer off from LAN
On Tue, 27 Apr 2010, Greg Sevart wrote: They (RC1918 addresses) absolutely can be routed over a VPN. The whole idea is to encapsulate and encrypt packets--the internet routers never see the RFC1918 addresses. Hell, there is nothing keeping them from being routed across the internet as a whole. Road Runner has a 10.x network for all of their devices. Cable boxes, cable modems, etc. Christopher Fisk -- BOFH Excuse #108: The air conditioning water supply pipe ruptured over the machine room
Re: [H] VPN connection seals computer off from LAN
That's not the same. Your router us doing NAT and translating your private IP address to a public one. --- Brian Sent from my iPhone On 2010-04-27, at 4:16 PM, Christopher Fisk chr...@mhonline.net wrote: On Tue, 27 Apr 2010, Greg Sevart wrote: They (RC1918 addresses) absolutely can be routed over a VPN. The whole idea is to encapsulate and encrypt packets--the internet routers never see the RFC1918 addresses. Hell, there is nothing keeping them from being routed across the internet as a whole. Road Runner has a 10.x network for all of their devices. Cable boxes, cable modems, etc. Christopher Fisk -- BOFH Excuse #108: The air conditioning water supply pipe ruptured over the machine room
Re: [H] VPN connection seals computer off from LAN
On Tue, 27 Apr 2010, Brian Weeden wrote: That's not the same. Your router us doing NAT and translating your private IP address to a public one. Not really. It doesn't break RFC because road runner doesn't route any of those IP's outside their network, it is all internal for their management. It's an easy way to give them IP management of your cable box, cable modem, etc without using publicly routable IP addresses. At the crux of it the network Time warner runs is owned and controlled by them. They aren't breaking any RFC rules by routing 1918 space on their private network. Christopher Fisk
Re: [H] VPN connection seals computer off from LAN
Right, but those addresses still only work on RoadRunner's private network, not the public Internet. At some point your private address need to get translated to a public one, unless the only destinations you communicate with are within the private network. And I for one really dislike it when ISPs issue private addreses. That removes a huge security benefit that otherwise would be provided by your NAT router. Do they automatically block dangerous things like file and printer sharing within their private network? Or are users up to their own devices on that? --- Brian Sent from my iPhone On 2010-04-27, at 4:37 PM, Christopher Fisk chr...@mhonline.net wrote: On Tue, 27 Apr 2010, Brian Weeden wrote: That's not the same. Your router us doing NAT and translating your private IP address to a public one. Not really. It doesn't break RFC because road runner doesn't route any of those IP's outside their network, it is all internal for their management. It's an easy way to give them IP management of your cable box, cable modem, etc without using publicly routable IP addresses. At the crux of it the network Time warner runs is owned and controlled by them. They aren't breaking any RFC rules by routing 1918 space on their private network. Christopher Fisk
Re: [H] VPN connection seals computer off from LAN
Err lol, I guess you forgot the actual MAIN use case of a VPN which is as a virtual PRIVATE network to connect your private home network to another one, like work-which is exactly what all the VPNs we use at work for do! :P In which case it is most explicitly to route RFC1918 addresses over the VPN! Though on the VPN profile, since we're all mostly network folks ourselves, we let the users select which routes to route over the VPN (configurable on the client side), and we also can enable or disable local LAN access with a switch for printing and file sharing while connected (security vs ease-of-use), and we also control whether you have split DNS (let DNS requests go to both the local and VPN vservers). In any case, I'm sure you've realized this all by now, and this is more informational for anyone else wondering...HTH! BINO From: brian.wee...@gmail.com Date: Tue, 27 Apr 2010 11:55:41 -0400 To: hardware@hardwaregroup.com Subject: Re: [H] VPN connection seals computer off from LAN That doesn't make any sense - 10. addresses cannot be routed via VPN, same as 192. Both of those address ranges are explicitly defined as private and cannot be routed on the Internet. The minute any packet with a 10. or 192. or any other private range hits an internet router it gets dropped. I think on my end the issue was with the public vs private network designations in Windows 7. I had the VPN connection defined as public which means it is untrusted and Windows won't allow network discovery or file sharing. I think somehow Windows got confused with the machine being on a private (trusted) LAN and public (untrusted) WAN at the same time. Not sure tho. --- Brian Weeden Technical Advisor Secure World Foundation http://www.secureworldfoundation.org +1 (514) 466-2756 Canada +1 (202) 683-8534 US On Tue, Apr 27, 2010 at 11:12 AM, Hunter, Gary gary.hun...@travelport.comwrote: I had the same issue it was down to all 10. Addresses being routed down the VPN. I changed my home network to 192.168.. and now everything works fine, Gary Hunter Consulting Engineer Travelport GDS T: (+1) 303 - 397 - 5035 M:(+1) 720 - 231 - 0965 E: gary.hun...@travelport.com SITA: HDQOK1G Travelport Product Development Center 6901 S Havana St Centennial, CO 80112 -Original Message- From: hardware-boun...@hardwaregroup.com [mailto: hardware-boun...@hardwaregroup.com] On Behalf Of Brian Weeden Sent: Sunday, April 25, 2010 10:45 AM To: hwg Subject: [H] VPN connection seals computer off from LAN This is very weird. I have a VPN setup and it's been acting weird - when I connect to it using one of the machines on my LAN, that machines effectively drops off the network. It can browse the internet just fine, but none of the other machines on the LAN can connect to it. Interestingly, although it says its LAN IP is still 10.0.1.2, I can't ping it with that IP. I have been using this VPN on this particular machine for months with no problems until recently. However, using the same VPN setup on another machine on the same LAN, it will connect to the VPN and still be visible on the LAN and can still connect to other clients on the LAN. I've double checked the VPN settings are they are exactly the same on both machines. Any ideas? --- Brian Weeden Technical Advisor Secure World Foundation http://www.secureworldfoundation.org +1 (514) 466-2756 Canada +1 (202) 683-8534 US If you are not the intended recipient of this e-mail message, please notify the sender and delete all copies immediately. The sender believes this message and any attachments were sent free of any virus, worm, Trojan horse, and other forms of malicious code. This message and its attachments could have been infected during transmission. The recipient opens any attachments at the recipient's own risk, and in so doing, the recipient accepts full responsibility for such actions and agrees to take protective and remedial action relating to any malicious code. Travelport is not liable for any loss or damage arising from this message or its attachments.
Re: [H] VPN connection seals computer off from LAN
On Tue, 27 Apr 2010, Brian Weeden wrote: Right, but those addresses still only work on RoadRunner's private network, not the public Internet. Road Runner's private network is a part of my public internet. It goes over the same wires. At some point your private address need to get translated to a public one, unless the only destinations you communicate with are within the private network. And I for one really dislike it when ISPs issue private addreses. That removes a huge security benefit that otherwise would be provided by your NAT router. Do they automatically block dangerous things like file and printer sharing within their private network? Or are users up to their own devices on that? I have a public IP address. it is right along side the private IP address road runner uses to manage my cable card and my cable modem. I can't access the private network because I don't have the IP information and my cable modem is setup to not allow it past. Road Runner using 10.x for managing customer devices effectively across the internet (since their copper/fiber is a part of the internet from my POV) doesn't cause any issues because they have proper routing and logical separation. I can't access their 10.x network because their routers don't route the public IP addresses to them. It's all on the same wire though. I have to be explaining this poorly. The short of it is: As long as the 1918 space isn't routed outside of Road Runner's network they can use as much of the space as they want and run it into your house, etc without any issues. Christopher Fisk
Re: [H] VPN connection seals computer off from LAN
Err, honestly you are explaining it rather poorly! (Now, not to pick a fight, but just to clarify any confusion for folks who aren't clear trying to follow the discussion): Earlier you said: Hell, there is nothing keeping them from being routed across the internet as a whole. Road Runner has a 10.x network for all of their devices. Cable boxes, cable modems, etc. But what you said above is just plain wrong, and that's what people are taking issue with and spawned all the responses. Road Runner/TW/Cox/ATT/Verizon whomever routing RFC1918 addresses across their network, even if it spans THE WORLD, is not the same as routed across the internet as a whole. That implies those addresses/routes being accepted by other providers as valid routes and propagated across BORDER routers into other networks and public IP addresses spaces, and that just doesn't happen (or if it does, it's a mistake, and it's fixed). So if what you're trying to say is what you wrote below, that's fine (but it doesn't mean much), but this all started when you made the comment above, and that's what people are having issue with b/c it's just plain wrong. Agree or disagree? ;) BINO Date: Tue, 27 Apr 2010 16:54:34 -0400 From: chr...@mhonline.net To: hardware@hardwaregroup.com Subject: Re: [H] VPN connection seals computer off from LAN snip The short of it is: As long as the 1918 space isn't routed outside of Road Runner's network they can use as much of the space as they want and run it into your house, etc without any issues. Christopher Fisk
Re: [H] VPN connection seals computer off from LAN
Would issuing a route print on the affected machine reveal the result of this? I'm assuming the 0.0.0.0 is catch-all route for non-VPN traffic. On 4/25/2010 1:14 PM, Bino Gopal wrote: Sounds like split tunneling being disabled on the one computer...could that somehow be set on the VPN server if it's not showing on the client?
Re: [H] VPN connection seals computer off from LAN
On Mon, 26 Apr 2010, maccrawj wrote: Would issuing a route print on the affected machine reveal the result of this? I'm assuming the 0.0.0.0 is catch-all route for non-VPN traffic. Not conclusively. VPN software generally hooks into the TCP stack and depending on the setup may or may not adjust your routing table (The good stuff does routing properly with a virtual adaptor, the hard to troubleshoot stuff just does stack manipulation without a virtual adaptor. Disabling split tunneling is very common, and would be the first thing I look into. Look for the client configuration for it, if it doesn't exist look for the server config. Often it can be set per user or per certificate depending on the client you are using. It is possible it has been disabled at the server as previously said. Christopher Fisk -- When it comes to compliments, women are ravenous, bloodsucking monsters, always wanting more, more, more! And if you give it to 'em, you'll get back plenty in return. -- Homer Simpson, Lisa the Beauty Queen
Re: [H] VPN connection seals computer off from LAN
It seems very unlikely to be a server thing to me. If I connect to the VPN on my main computer, it works just fine and everything on the LAN still works. It's only my other computer that disappears from the LAN when it connects to the VPN. So I've gotta figure that it is a local windows config. Both computers are running Windows 7. --- Brian Weeden Technical Advisor Secure World Foundation http://www.secureworldfoundation.org +1 (514) 466-2756 Canada +1 (202) 683-8534 US On Mon, Apr 26, 2010 at 4:53 AM, Christopher Fisk chr...@mhonline.netwrote: On Mon, 26 Apr 2010, maccrawj wrote: Would issuing a route print on the affected machine reveal the result of this? I'm assuming the 0.0.0.0 is catch-all route for non-VPN traffic. Not conclusively. VPN software generally hooks into the TCP stack and depending on the setup may or may not adjust your routing table (The good stuff does routing properly with a virtual adaptor, the hard to troubleshoot stuff just does stack manipulation without a virtual adaptor. Disabling split tunneling is very common, and would be the first thing I look into. Look for the client configuration for it, if it doesn't exist look for the server config. Often it can be set per user or per certificate depending on the client you are using. It is possible it has been disabled at the server as previously said. Christopher Fisk -- When it comes to compliments, women are ravenous, bloodsucking monsters, always wanting more, more, more! And if you give it to 'em, you'll get back plenty in return. -- Homer Simpson, Lisa the Beauty Queen
Re: [H] VPN connection seals computer off from LAN
On Mon, 26 Apr 2010, Brian Weeden wrote: It seems very unlikely to be a server thing to me. If I connect to the VPN on my main computer, it works just fine and everything on the LAN still works. It's only my other computer that disappears from the LAN when it connects to the VPN. So I've gotta figure that it is a local windows config. Both computers are running Windows 7. Same VPN client login and certificates? What VPN Client are you using? Christopher Fisk -- BOFH Excuse #329: Server depressed, needs Prozac
Re: [H] VPN connection seals computer off from LAN
No client - just a straight VPN setup through Windows to a commercial service. And yes, same login info. I even deleted and re-created the VPN connection using the same settings on both machines. This just got even weirder - I rebooted the machine, and now it works fine. I guess we just chalk this up to a Windows feature. --- Brian Weeden Technical Advisor Secure World Foundation http://www.secureworldfoundation.org +1 (514) 466-2756 Canada +1 (202) 683-8534 US On Mon, Apr 26, 2010 at 5:00 AM, Christopher Fisk chr...@mhonline.netwrote: On Mon, 26 Apr 2010, Brian Weeden wrote: It seems very unlikely to be a server thing to me. If I connect to the VPN on my main computer, it works just fine and everything on the LAN still works. It's only my other computer that disappears from the LAN when it connects to the VPN. So I've gotta figure that it is a local windows config. Both computers are running Windows 7. Same VPN client login and certificates? What VPN Client are you using? Christopher Fisk -- BOFH Excuse #329: Server depressed, needs Prozac
Re: [H] VPN connection seals computer off from LAN
On Monday 26 April 2010 15:14:56 Brian Weeden wrote: I even deleted and re-created the VPN connection using the same settings on both machines. This just got even weirder - I rebooted the machine, and now it works fine. I guess we just chalk this up to a Windows feature. --- Brian Weeden Technical Advisor Secure World Foundation http://www.secureworldfoundation.org +1 (514) 466-2756 Canada +1 (202) 683-8534 US Something changed settings and waited for a restart ! -- Best Regards: Derrick. Running Open SuSE 11.1 KDE 3.5.10 Desktop. Pontefract Linux Users Group. plug @ play-net.co.uk
[H] VPN connection seals computer off from LAN
This is very weird. I have a VPN setup and it's been acting weird - when I connect to it using one of the machines on my LAN, that machines effectively drops off the network. It can browse the internet just fine, but none of the other machines on the LAN can connect to it. Interestingly, although it says its LAN IP is still 10.0.1.2, I can't ping it with that IP. I have been using this VPN on this particular machine for months with no problems until recently. However, using the same VPN setup on another machine on the same LAN, it will connect to the VPN and still be visible on the LAN and can still connect to other clients on the LAN. I've double checked the VPN settings are they are exactly the same on both machines. Any ideas? --- Brian Weeden Technical Advisor Secure World Foundation http://www.secureworldfoundation.org +1 (514) 466-2756 Canada +1 (202) 683-8534 US
Re: [H] VPN connection seals computer off from LAN
Sounds like split tunneling being disabled on the one computer...could that somehow be set on the VPN server if it's not showing on the client? BINO From: brian.wee...@gmail.com Date: Sun, 25 Apr 2010 12:45:01 -0400 To: hardware@hardwaregroup.com Subject: [H] VPN connection seals computer off from LAN This is very weird. I have a VPN setup and it's been acting weird - when I connect to it using one of the machines on my LAN, that machines effectively drops off the network. It can browse the internet just fine, but none of the other machines on the LAN can connect to it. Interestingly, although it says its LAN IP is still 10.0.1.2, I can't ping it with that IP. I have been using this VPN on this particular machine for months with no problems until recently. However, using the same VPN setup on another machine on the same LAN, it will connect to the VPN and still be visible on the LAN and can still connect to other clients on the LAN. I've double checked the VPN settings are they are exactly the same on both machines. Any ideas? --- Brian Weeden Technical Advisor Secure World Foundation http://www.secureworldfoundation.org +1 (514) 466-2756 Canada +1 (202) 683-8534 US
Re: [H] VPN
Winterlight wrote: Using a VPN to protect yourself when using public WAP involves logging into the public WAP, and then using a VPN from your PC to your home or work PC and then using that safe internet connection. Everything in between your laptop and your home PC is encrypted so nobody can snoop. Do I have it right? Is there good VPN freeware available? If not what is good VPN software? Thanks. Generally, yes, you're right. Your traffic between your laptop and home network is encrypted, so nobody can snoop on that traffic. Your laptop is still vulnerable to hacks from people on the same WAP, but depending on your network and VPN configuration all of your traffic can go through your home PC and then out onto the Internet. I use OpenVPN (www.openvpn.net) as my VPN software (Windows clients, Linux server). I've found it to be solid, though setting it up initially wasn't easy. There are howtos and a good amount of help on configuring it on the site. Jamie -- Jamie Furtner ja...@furtner.ca I aim to misbehave - Malcom Reynolds (Serenity movie) It's not safe... For them. - River Tam (Serenity movie)
Re: [H] VPN
And keep in mind that while the VPN tunnel is encrypted, once the data leaves the tunnel it's back to what it was before. So something like email over http is now back to being unencrypted cleartext once it hits your home machine, leaves the tunnel and goes out onto the internet, while https connections are still encrypted to their endpoint even when they leave the tunnel. I use a service called SwissVPN which goes one step further for a few bucks a month. It gives me a VPN from my computer back to their network in Switzerland and from there the packets are dumped onto the internet and you appear to be surfing from Switzerland. Works great when I'm travelling. And as the previous poster mentioned, just because you have a VPN up and running it does not mean you can't be hacked. All it means is that your data is encrypted. Anyone can still try and get into your machine, so the standard rules of having either a NAT router and/or a firewall up and running apply. --- Brian Weeden Technical Advisor Secure World Foundation http://www.secureworldfoundation.org +1 (514) 466-2756 Canada +1 (202) 683-8534 US On Tue, Jun 9, 2009 at 2:05 AM, Jamie Furtner ja...@furtner.ca wrote: Winterlight wrote: Using a VPN to protect yourself when using public WAP involves logging into the public WAP, and then using a VPN from your PC to your home or work PC and then using that safe internet connection. Everything in between your laptop and your home PC is encrypted so nobody can snoop. Do I have it right? Is there good VPN freeware available? If not what is good VPN software? Thanks. Generally, yes, you're right. Your traffic between your laptop and home network is encrypted, so nobody can snoop on that traffic. Your laptop is still vulnerable to hacks from people on the same WAP, but depending on your network and VPN configuration all of your traffic can go through your home PC and then out onto the Internet. I use OpenVPN (www.openvpn.net) as my VPN software (Windows clients, Linux server). I've found it to be solid, though setting it up initially wasn't easy. There are howtos and a good amount of help on configuring it on the site. Jamie -- Jamie Furtner ja...@furtner.ca I aim to misbehave - Malcom Reynolds (Serenity movie) It's not safe... For them. - River Tam (Serenity movie)
Re: [H] VPN
On Mon, 8 Jun 2009, Winterlight wrote: Using a VPN to protect yourself when using public WAP involves logging into the public WAP, and then using a VPN from your PC to your home or work PC and then using that safe internet connection. Everything in between your laptop and your home PC is encrypted so nobody can snoop. Do I have it right? Is there good VPN freeware available? If not what is good VPN software? Thanks. Setup a linux server at home. use ssh port tunneling and a squid server at home. Christopher FIsk -- I think nighttime is dark so you can imagine your fears with less distraction. -- Calvin -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean.
Re: [H] VPN
OpenVPN On Tue, Jun 09, 2009 at 09:34:18AM -0400, Christopher Fisk wrote: On Mon, 8 Jun 2009, Winterlight wrote: Using a VPN to protect yourself when using public WAP involves logging into the public WAP, and then using a VPN from your PC to your home or work PC and then using that safe internet connection. Everything in between your laptop and your home PC is encrypted so nobody can snoop. Do I have it right? Is there good VPN freeware available? If not what is good VPN software? Thanks. Setup a linux server at home. use ssh port tunneling and a squid server at home. Christopher FIsk -- I think nighttime is dark so you can imagine your fears with less distraction.-- Calvin -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -- Bryan G. Seitz
Re: [H] VPN
On Tue, 9 Jun 2009, Bryan Seitz wrote: OpenVPN IMO putty proxy server is easier faster. Christopher Fisk -- Kaylee: Figures. First time on the Core and what do I get to do? Dig through trash. Why couldn't he send me shopping at the triplex, or... Oooh, synchronizers! --Episode #9, Ariel -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean.
Re: [H] VPN
Ditto others who have said -- OpenVPN. I don't have any experience running OpenVPN on windows computers, but the server configuration on a BSD box was not terribly complicated, and the client software for Mac at least is quite good. I think some versions of dd-wrt or some other similar home router firmware has OpenVPN built in? That would be worth looking into, imho. Scott On Jun 9, 2009, at 1:40 AM, Winterlight wrote: Using a VPN to protect yourself when using public WAP involves logging into the public WAP, and then using a VPN from your PC to your home or work PC and then using that safe internet connection. Everything in between your laptop and your home PC is encrypted so nobody can snoop. Do I have it right? Is there good VPN freeware available? If not what is good VPN software? Thanks.
Re: [H] VPN
I'm also seeing more folks use VPN services like OpenVPN or even paid services to keep their ISP's packet sniffing at bay. Winterlight wrote: Using a VPN to protect yourself when using public WAP involves logging into the public WAP, and then using a VPN from your PC to your home or work PC and then using that safe internet connection. Everything in between your laptop and your home PC is encrypted so nobody can snoop. Do I have it right? Is there good VPN freeware available? If not what is good VPN software? Thanks. Generally, yes, you're right. Your traffic between your laptop and home network is encrypted, so nobody can snoop on that traffic. Your laptop is still vulnerable to hacks from people on the same WAP, but depending on your network and VPN configuration all of your traffic can go through your home PC and then out onto the Internet. I use OpenVPN (www.openvpn.net) as my VPN software (Windows clients, Linux server). I've found it to be solid, though setting it up initially wasn't easy. There are howtos and a good amount of help on configuring it on the site.
[H] VPN
Using a VPN to protect yourself when using public WAP involves logging into the public WAP, and then using a VPN from your PC to your home or work PC and then using that safe internet connection. Everything in between your laptop and your home PC is encrypted so nobody can snoop. Do I have it right? Is there good VPN freeware available? If not what is good VPN software? Thanks.
Re: [H] VPN problems
Using plink to logon to putty running on a windows box would be a rough learning curve for the owner much less me not knowing that much about it. -Original Message- From: hardware-boun...@hardwaregroup.com [mailto:hardware-boun...@hardwaregroup.com] On Behalf Of Christopher Fisk Sent: Tuesday, February 10, 2009 08:39 To: hardware@hardwaregroup.com Subject: Re: [H] VPN problems On Tue, 10 Feb 2009, Christopher Fisk wrote: On Tue, 10 Feb 2009, mark.dodge wrote: Come on there are a lot of network guys here, can anyone give me any suggestions? I really need to get this resolved. Someone just tell me the way they would set it up and I can start there. I'm thinking that eliminating the router and configuring one of the NICs for NAT and the other for the terminal services, is that correct? What are you trying to use for VPN? Windows 2003 RAS? I've never really worked with the RAS settings in Windows, so I can't say one way or another if that is a good idea. Your best solution (IMO) is to do the following: Setup a small linux box (anything better than a P1 with 64MB memory will work) and install ssh on it. Setup a few user accounts for people who will connect remotely. Forward the ssh port from the router to that linux box. Setup Putty with port forwarding for remote desktop. There you go, you're in. No more worrying about windows VPN. Hell, you can test all this with a Gentoo LiveCD. Another valid (But untested by me) method would be to use the sshwindows package of openssh. http://sshwindows.sourceforge.net/ Install that on a windows machine that is always on (maybe even the server?) and setup the ssh forward to go there. Login with Putty, forward local port 3390 to the IP of the windows server, use remote desktop and connect from the client to localhost:3390 once you're connected with putty. Can even setup a batch file to call plink and remote desktop Christopher Fisk -- You know you're using the computer too much when: Reading a text document on paper and getting angry when you realized it doesn't have a Find command -- martinbishop -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean.
Re: [H] VPN problems
On Thu, 12 Feb 2009, mark.dodge wrote: Using plink to logon to putty running on a windows box would be a rough learning curve for the owner much less me not knowing that much about it. You kidding? All you do is set up the putty connection. Have a batch file with the following: start plink -load office -pw mypassword start mstsc.exe (or whatever the damn executable for terminal services is) Tell them when they hear the BEEP, to hit connect on the terminal services client and they're in. No learning curve other than double clicking shortcut and clicking connect after the audible beep. Christopher Fisk -- If the terriers and bariffs are torn down, this economy will grow. George W. Bush, January 7, 2000 Spoken in Rochester, New York during presidential campaign. -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean.
Re: [H] VPN problems
Come on there are a lot of network guys here, can anyone give me any suggestions? I really need to get this resolved. Someone just tell me the way they would set it up and I can start there. I'm thinking that eliminating the router and configuring one of the NICs for NAT and the other for the terminal services, is that correct? -Original Message- From: hardware-boun...@hardwaregroup.com [mailto:hardware-boun...@hardwaregroup.com] On Behalf Of mark.dodge Sent: Saturday, February 07, 2009 17:37 To: hardware@hardwaregroup.com Subject: Re: [H] VPN problems What would be better, continue using the router then do port forwarding, which I'm still not sure of or get rid of the router and use the two NICs, one for the terminal server and the other for the share to the internet? Do I assign a static IP with the sub net of the private range or use the static IP I have and set the server as a DNS server also? I have been reading some on the net and it is getting more and more confusing all the while. If I go the two NIC route, I still need some kind of firewall to keep all but what I want out making it more complicated but necessary. Do I need to then share the connection from that NIC so that not only the server can see the Internet but also the terminals need to see out. -Original Message- From: hardware-boun...@hardwaregroup.com [mailto:hardware-boun...@hardwaregroup.com] On Behalf Of Christopher Fisk Sent: Thursday, February 05, 2009 1:03 PM To: hardware@hardwaregroup.com Subject: Re: [H] VPN problems On Thu, 5 Feb 2009, mark.dodge wrote: I have one Windows 2003 server running Terminal Services set up in each of three offices that I would like to get into from the outside world, one to be able to do some admin stuff without having to go to each office and another for the owner to be able to look at the cameras hooked up to each store. I have attempted to use VPN to do this and although I can ping the IP address I cannot log into the server. What are some things I need to look for? I have two NICs in the server one for terminal services internal and one for the vpn. The one office I am doing this at first has a static IP address and I have set the router to do vpn pass-through or at least I think I have it right. The router is a D-Link DI 808HV. I'll be honest I think I bit off more than I can chew on this project I can set up internal LANs but not much experience with getting them seen from outside, most of the time it is preventing access from outside baddies. I also need later to set up a cluster outside of the offices for fail safe and backup of all three servers, but that is another project altogether that I am still doing research on. I have to be able currently for the owner to log into either of the servers and see an app that is running on them to see if and when he has appointments and to do end of day and week and monthly reports, etc. and then also to check on the cameras, and of course for me to add or delete users and so forth, They all are working as Terminal Servers just fine within each office, so at least I got that right. Is the subnet you are on the same as the remote subnet? (I.E. 192.168.0.0/24 at your computer and the same subnet at the office?). That can cause routing issues with certain VPN software (Other software is smart enough to get around that.) Also with multiple NIC's in the server you might be running into a routing issue. Less likely if you're able to ping, but sometimes the VPN software will respond to pings no matter what (very annoying) Christopher Fisk -- Leela: Oh no, there's no exhaust pipe. Project Satan: That's right. Thanks to Ed Begley Jr.'s electric motor, the most evil propulsion system ever conceived! -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean.
Re: [H] VPN problems
On Tue, 10 Feb 2009, mark.dodge wrote: Come on there are a lot of network guys here, can anyone give me any suggestions? I really need to get this resolved. Someone just tell me the way they would set it up and I can start there. I'm thinking that eliminating the router and configuring one of the NICs for NAT and the other for the terminal services, is that correct? What are you trying to use for VPN? Windows 2003 RAS? I've never really worked with the RAS settings in Windows, so I can't say one way or another if that is a good idea. Your best solution (IMO) is to do the following: Setup a small linux box (anything better than a P1 with 64MB memory will work) and install ssh on it. Setup a few user accounts for people who will connect remotely. Forward the ssh port from the router to that linux box. Setup Putty with port forwarding for remote desktop. There you go, you're in. No more worrying about windows VPN. Hell, you can test all this with a Gentoo LiveCD. Christopher Fisk -- Book: The destination's not important. How you get there's the worthier part. --Episode #1, Serenity -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean.
Re: [H] VPN problems
On Tue, 10 Feb 2009, Christopher Fisk wrote: On Tue, 10 Feb 2009, mark.dodge wrote: Come on there are a lot of network guys here, can anyone give me any suggestions? I really need to get this resolved. Someone just tell me the way they would set it up and I can start there. I'm thinking that eliminating the router and configuring one of the NICs for NAT and the other for the terminal services, is that correct? What are you trying to use for VPN? Windows 2003 RAS? I've never really worked with the RAS settings in Windows, so I can't say one way or another if that is a good idea. Your best solution (IMO) is to do the following: Setup a small linux box (anything better than a P1 with 64MB memory will work) and install ssh on it. Setup a few user accounts for people who will connect remotely. Forward the ssh port from the router to that linux box. Setup Putty with port forwarding for remote desktop. There you go, you're in. No more worrying about windows VPN. Hell, you can test all this with a Gentoo LiveCD. Another valid (But untested by me) method would be to use the sshwindows package of openssh. http://sshwindows.sourceforge.net/ Install that on a windows machine that is always on (maybe even the server?) and setup the ssh forward to go there. Login with Putty, forward local port 3390 to the IP of the windows server, use remote desktop and connect from the client to localhost:3390 once you're connected with putty. Can even setup a batch file to call plink and remote desktop Christopher Fisk -- You know you're using the computer too much when: Reading a text document on paper and getting angry when you realized it doesn't have a Find command -- martinbishop -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean.
Re: [H] VPN problems
What would be better, continue using the router then do port forwarding, which I'm still not sure of or get rid of the router and use the two NICs, one for the terminal server and the other for the share to the internet? Do I assign a static IP with the sub net of the private range or use the static IP I have and set the server as a DNS server also? I have been reading some on the net and it is getting more and more confusing all the while. If I go the two NIC route, I still need some kind of firewall to keep all but what I want out making it more complicated but necessary. Do I need to then share the connection from that NIC so that not only the server can see the Internet but also the terminals need to see out. -Original Message- From: hardware-boun...@hardwaregroup.com [mailto:hardware-boun...@hardwaregroup.com] On Behalf Of Christopher Fisk Sent: Thursday, February 05, 2009 1:03 PM To: hardware@hardwaregroup.com Subject: Re: [H] VPN problems On Thu, 5 Feb 2009, mark.dodge wrote: I have one Windows 2003 server running Terminal Services set up in each of three offices that I would like to get into from the outside world, one to be able to do some admin stuff without having to go to each office and another for the owner to be able to look at the cameras hooked up to each store. I have attempted to use VPN to do this and although I can ping the IP address I cannot log into the server. What are some things I need to look for? I have two NICs in the server one for terminal services internal and one for the vpn. The one office I am doing this at first has a static IP address and I have set the router to do vpn pass-through or at least I think I have it right. The router is a D-Link DI 808HV. I'll be honest I think I bit off more than I can chew on this project I can set up internal LANs but not much experience with getting them seen from outside, most of the time it is preventing access from outside baddies. I also need later to set up a cluster outside of the offices for fail safe and backup of all three servers, but that is another project altogether that I am still doing research on. I have to be able currently for the owner to log into either of the servers and see an app that is running on them to see if and when he has appointments and to do end of day and week and monthly reports, etc. and then also to check on the cameras, and of course for me to add or delete users and so forth, They all are working as Terminal Servers just fine within each office, so at least I got that right. Is the subnet you are on the same as the remote subnet? (I.E. 192.168.0.0/24 at your computer and the same subnet at the office?). That can cause routing issues with certain VPN software (Other software is smart enough to get around that.) Also with multiple NIC's in the server you might be running into a routing issue. Less likely if you're able to ping, but sometimes the VPN software will respond to pings no matter what (very annoying) Christopher Fisk -- Leela: Oh no, there's no exhaust pipe. Project Satan: That's right. Thanks to Ed Begley Jr.'s electric motor, the most evil propulsion system ever conceived! -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean.
[H] VPN problems
I have one Windows 2003 server running Terminal Services set up in each of three offices that I would like to get into from the outside world, one to be able to do some admin stuff without having to go to each office and another for the owner to be able to look at the cameras hooked up to each store. I have attempted to use VPN to do this and although I can ping the IP address I cannot log into the server. What are some things I need to look for? I have two NICs in the server one for terminal services internal and one for the vpn. The one office I am doing this at first has a static IP address and I have set the router to do vpn pass-through or at least I think I have it right. The router is a D-Link DI 808HV. I'll be honest I think I bit off more than I can chew on this project I can set up internal LANs but not much experience with getting them seen from outside, most of the time it is preventing access from outside baddies. I also need later to set up a cluster outside of the offices for fail safe and backup of all three servers, but that is another project altogether that I am still doing research on. I have to be able currently for the owner to log into either of the servers and see an app that is running on them to see if and when he has appointments and to do end of day and week and monthly reports, etc. and then also to check on the cameras, and of course for me to add or delete users and so forth, They all are working as Terminal Servers just fine within each office, so at least I got that right. Mark MD Computers, Houston, TX
Re: [H] VPN problems
On Thu, 5 Feb 2009, mark.dodge wrote: I have one Windows 2003 server running Terminal Services set up in each of three offices that I would like to get into from the outside world, one to be able to do some admin stuff without having to go to each office and another for the owner to be able to look at the cameras hooked up to each store. I have attempted to use VPN to do this and although I can ping the IP address I cannot log into the server. What are some things I need to look for? I have two NICs in the server one for terminal services internal and one for the vpn. The one office I am doing this at first has a static IP address and I have set the router to do vpn pass-through or at least I think I have it right. The router is a D-Link DI 808HV. I'll be honest I think I bit off more than I can chew on this project I can set up internal LANs but not much experience with getting them seen from outside, most of the time it is preventing access from outside baddies. I also need later to set up a cluster outside of the offices for fail safe and backup of all three servers, but that is another project altogether that I am still doing research on. I have to be able currently for the owner to log into either of the servers and see an app that is running on them to see if and when he has appointments and to do end of day and week and monthly reports, etc. and then also to check on the cameras, and of course for me to add or delete users and so forth, They all are working as Terminal Servers just fine within each office, so at least I got that right. Is the subnet you are on the same as the remote subnet? (I.E. 192.168.0.0/24 at your computer and the same subnet at the office?). That can cause routing issues with certain VPN software (Other software is smart enough to get around that.) Also with multiple NIC's in the server you might be running into a routing issue. Less likely if you're able to ping, but sometimes the VPN software will respond to pings no matter what (very annoying) Christopher Fisk -- Leela: Oh no, there's no exhaust pipe. Project Satan: That's right. Thanks to Ed Begley Jr.'s electric motor, the most evil propulsion system ever conceived! -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean.
Re: [H] VPN
On Sun, 2 Oct 2005, Chris Shaw wrote: Anyone on this list familiar with VPN's would be willing to answer a few questions off list?? It's certainly a broad question, but I'll help you out. Christopher Fisk -- My opponent keeps saying I give too much tax relief to the top 1%, but he hadn't heard my latest proposal. The bottom 99% will do well when they get to split Dick Cheney's stock options. George W. Bush, October 19, 2000 Joke delivered at the Al Smith Memorial dinner in New York.
[H] VPN
Anyone on this list familiar with VPN's would be willing to answer a few questions off list?? Thanks!! -- C L Shaw [EMAIL PROTECTED]