Welcome, Guest. Please login or register.
Did you miss your activation email?
Sunday 22 December 2024, 06:10:38 pm

Login with username, password and session length

Visit the official Endian Community Mailinglist  HERE
14262 Posts in 4377 Topics by 6517 Members
Latest Member: Sandro
Search:     Advanced search
+  EFW Support
|-+  Support
| |-+  VPN Support
| | |-+  NAT & VPN Confusion
0 Members and 0 Guests are viewing this topic. « previous next »
Pages: [1] Go Down Print
Author Topic: NAT & VPN Confusion  (Read 18666 times)
mrubs
Jr. Member
*
Offline Offline

Gender: Male
Posts: 7



WWW
« on: Sunday 20 May 2012, 07:07:53 am »

Hello all,

Here is my confusion that I am hoping you can assist me with.  I have setup a VPN server using Windows 2008 RRAS and it sits behind a SonicWALL firewall.  I have spent the better part of the past week getting the VPN up and running and all of the proper ports operating on the firewall.  As it sits now, everything works great...almost.  When my remote users connect to the VPN, they are no longer able to surf the Internet.  In other words, DNS stops working.  I read articles on how to do a split-tunnel on the VPN, but I do NOT want to go that direction based on the security issues.

When I created the NAT on my 2008 server, it DID fix my remote clients...but it killed my local clients!  In other words, my remote clients could connect to the VPN and surf the Internet and local files with no problem.  But as soon as I created the NAT, all of my local computers (behind the firewall) were no longer able to get DNS resolution.  As soon as I deleted the new NAT entry, the local computers DNS started working again, but the remote (VPN) users were no longer able to surf the web.  So I have created a Catch-22 or infinite loop.  Does anyone have any ideas on how I can configure my VPN server to allow both my local and remote users to resolve DNS without having to create a split-tunnel?
Thanks
Logged

mrkroket
Hero Member
*****
Offline Offline

Posts: 495


« Reply #1 on: Tuesday 22 May 2012, 02:21:05 am »

I think it's not the correct forum for that:
-It's a Windows RRAS related problem
-You use a SonicWall Firewall
-You don't use Endian Firewall

You should try on a Windows 2008 related forum.
Logged
dda
Sr. Member
****
Offline Offline

Posts: 227


« Reply #2 on: Wednesday 15 August 2012, 05:06:27 am »

At the remote site you can take the tick out of "use default gateway on remote network" that will allow them to use their own internet connection, other than that you have to get them to authenticate on the sonicwall which you will need to query elsewhere.
Logged
Pages: [1] Go Up Print 
« previous next »
Jump to:  

Page created in 0.063 seconds with 19 queries.
Powered by SMF 1.1 RC2 | SMF © 2001-2005, Lewis Media Design by 7dana.com