> On Nov 18, 1:33Â*pm, Joe <j...@jretrading.com> wrote:
>> Jack wrote:
>>> This PC has 2 NICs, one is connected to SBS network, the other one is
>>> connected to a Juniper VPN router which is totally isolated from SBS
>>> network.
>>
>>> We noticed that we could not leave this PC connected to SBS network if
>>> we want to use VPN. If we disconnect from SBS network, VPN works fine.
>>> Is there any way we can leave both NICs connected and use VPN? If we
>>> disconnect from SBS network, the user can not use internet.
>>> I have a feeling this is due to the “Metric” priority of the two
>>> networks gateways – when the SBS Network is connected – that Gateway
>>> has a higher Metric and this is diverting any traffic.
>>> I am not sure i am right and how to fix this. Any one can shed me some
>>> light?
>>
>> Yes, it is routing. It's not a matter of priorities, a computer can have
>> only one default gateway, and there may also be a network address
>> conflict. What you need to do is to leave the LAN NIC to pick up DHCP
>> information from the SBS, which will include the default gateway
>> address, and set up manual routes in the PC for the other NIC. These
>> routes will be used for VPN traffic in preference to the default gateway.
>>
>> As Cris says, you need to look at what you're connecting through the
>> VPN. Whatever networks are reached that way must have persistent manual
>> routes set up in the PC, specifying the 'VPN' NIC as interface and the
>> VPN router address as gateway. You use the 'route' command from a
>> command prompt to do this. Don't forget the -p flag to make the routes
>> persistent, or they will be lost at the next boot. Don't forget to
>> document them, as well.
>>
>> All of the networks on the other side of the VPN, and the SBS LAN
>> network, must have different network addresses. You may need to alter
>> your addressing scheme to achieve that. The address of the tiny network
>> formed by the PC and VPN router connections may need to be different
>> again if the VPN is configured to route its connections, or it must be
>> the same as that of the other side of the VPN if the VPN is configured
>> to bridge the connections.
>>
>> --
>> Joe
>
> Hi Joe, Thanks for the insights!
>
> How can I "set up manual routes in the PC for the other NIC"???
>
> The two networks are on different IP schemes
> SBS network: 192.168.16.x
> VPN network: 10.101.1.X, gateway:10.101.1.1
What is the gateway (router) on the SBS network? Do you have two ISP
lines coming in to the office?
You can view the machine's routing table by the 'route print' command.
It can also be altered with this command, however I do not recommend
this course of action due to it may cause issues with the client
machine on the SBS network, considering this machine is joined to the
domain.
Honestly, the better way to do this is to connect to the VPN through
the SBS network. However, a better understanding of the current two
networks this workstation is connected to would better help.
--
Ace
This posting is provided "AS-IS" with no warranties or guarantees and
confers no rights.
Please reply back to the newsgroup or forum for collaboration benefit
among responding engineers, and to help others benefit from your
resolution.
Ace Fekay, MCT, MCITP EA, MCTS Windows 2008 & Exchange 2007, MCSE &
MCSA 2003/2000, MCSA Messaging 2003
Microsoft Certified Trainer
For urgent issues, please contact Microsoft PSS directly. Please check
http://support.microsoft.com for regional support phone numbers.
Similar Threads
Linear Mode
