stevemayman
Technical User
Greetings,
I am not in the IT field, just a small business owner who can’t yet afford consultants. I have maintained our network for about 10 years by keeping it simple. Now I have tried to add a VPN and am finding that it is not simple! You all seem very smart and hope you can straighten me out.
The goal: to set up a VPN server at our office that I can access remotely through a wireless connection on my laptop. My original vision was to simply connect and see all network resources just as I do at work, but fear that this is impossible with XP.
Details: The network at the office is comprised of 5 XP computers (dynamic IP) sharing a single DSL (dynamic IP) connection through a Linksys router (BEFW11S4 V.2 with Firmware 1.45.10), 2 plotters directly on the network with static IP addresses (192.168.1.150 and 151) and a printer shared through one of the dynamic IP machines. My home “network” is simply a Linksys WRT54G router with a DSL connection. Both routers are set up as a DHCP servers dishing out addresses starting at 192.168.1.100 at the office and at 192.168.1.200 at home.
Current Status: I have switched the VPN server to a static internal IP address (192.168.1.125), forwarded port 1723 there, and enabled PPTP pass-through. I can connect to the VPN through a dial-up connection on my laptop and access network resources by IP address, but not by name. I can’t browse at all.
Problems:
1) I can’t connect to the VPN through my DSL connection at home. I read in the FAQ section of this group that the problem could be with MTU but I fear that it might also be that both networks are in the same subnet.
I don’t know what this means, but a suggested IP scheme was to assign 192.168.1.XXX on the local LAN and IP addresses of 192.168.2.XXX on the remote LAN. I tried this at home, but still couldn’t get it to work (picture a monkey randomly pulling levers…) Both routers are set up as DHCP servers, and assign IP addresses starting with 192.168.1.XXX. (only the final portion of the address can be changed in setup.) Does this doom me to conflicting subnets?
I am happy to statically assign IP addresses on one or both networks, but I would like to have my laptop transparently establish wireless connections at home and the office as it does now, and I would like it to automatically handle guest computers (my girlfriend) that want to use our internet connection without a lot of configuration trauma. What is the best approach to this situation?
2) I can’t browse workgroup or network resources through VPN, nor can I access network resources other than those on the VPN server machine by name. I understand that this is due to name resolution issues.
A FAQ on this site suggested that I place “at least one W2K or XP system on each LAN segment, make it a WINS server, and be done with it.” I read elsewhere that WINS isn’t available in XP. My VPN server is on an XP pro machine but I couldn’t find any info in the XP help about setting up WINS. Is it possible to set it up XP Pro as a WINS server? Will this require a lot of expertise or maintenance?
I have also read that making the VPN server the “master browser” might help or that the “Host” file (presumably on the VPN server machine) can be modified to include resource names, or that “LMHost” can be modified on each machine to resolve name issues.
What is the best approach here? I am sketchy on the details/pros/cons of each. Any guidance in this area would be much appreciated since our software is customized with hard-coded resource NAMES and accessing resources by IP address is not really an acceptable workaround.
3) Finally, I noted elsewhere on the site that there are problems with port forwarding or PPTP pass-through on the WRT54G. The solution seemed quite complex. Since I am not using this router on the server side can I leave it alone, or might this be part of my problem?
Sorry for all the dumb questions, but have spent a day on this already, and a little knowledge beats a lot of experimentation. Thanks so much!
Steve
I am not in the IT field, just a small business owner who can’t yet afford consultants. I have maintained our network for about 10 years by keeping it simple. Now I have tried to add a VPN and am finding that it is not simple! You all seem very smart and hope you can straighten me out.
The goal: to set up a VPN server at our office that I can access remotely through a wireless connection on my laptop. My original vision was to simply connect and see all network resources just as I do at work, but fear that this is impossible with XP.
Details: The network at the office is comprised of 5 XP computers (dynamic IP) sharing a single DSL (dynamic IP) connection through a Linksys router (BEFW11S4 V.2 with Firmware 1.45.10), 2 plotters directly on the network with static IP addresses (192.168.1.150 and 151) and a printer shared through one of the dynamic IP machines. My home “network” is simply a Linksys WRT54G router with a DSL connection. Both routers are set up as a DHCP servers dishing out addresses starting at 192.168.1.100 at the office and at 192.168.1.200 at home.
Current Status: I have switched the VPN server to a static internal IP address (192.168.1.125), forwarded port 1723 there, and enabled PPTP pass-through. I can connect to the VPN through a dial-up connection on my laptop and access network resources by IP address, but not by name. I can’t browse at all.
Problems:
1) I can’t connect to the VPN through my DSL connection at home. I read in the FAQ section of this group that the problem could be with MTU but I fear that it might also be that both networks are in the same subnet.
I don’t know what this means, but a suggested IP scheme was to assign 192.168.1.XXX on the local LAN and IP addresses of 192.168.2.XXX on the remote LAN. I tried this at home, but still couldn’t get it to work (picture a monkey randomly pulling levers…) Both routers are set up as DHCP servers, and assign IP addresses starting with 192.168.1.XXX. (only the final portion of the address can be changed in setup.) Does this doom me to conflicting subnets?
I am happy to statically assign IP addresses on one or both networks, but I would like to have my laptop transparently establish wireless connections at home and the office as it does now, and I would like it to automatically handle guest computers (my girlfriend) that want to use our internet connection without a lot of configuration trauma. What is the best approach to this situation?
2) I can’t browse workgroup or network resources through VPN, nor can I access network resources other than those on the VPN server machine by name. I understand that this is due to name resolution issues.
A FAQ on this site suggested that I place “at least one W2K or XP system on each LAN segment, make it a WINS server, and be done with it.” I read elsewhere that WINS isn’t available in XP. My VPN server is on an XP pro machine but I couldn’t find any info in the XP help about setting up WINS. Is it possible to set it up XP Pro as a WINS server? Will this require a lot of expertise or maintenance?
I have also read that making the VPN server the “master browser” might help or that the “Host” file (presumably on the VPN server machine) can be modified to include resource names, or that “LMHost” can be modified on each machine to resolve name issues.
What is the best approach here? I am sketchy on the details/pros/cons of each. Any guidance in this area would be much appreciated since our software is customized with hard-coded resource NAMES and accessing resources by IP address is not really an acceptable workaround.
3) Finally, I noted elsewhere on the site that there are problems with port forwarding or PPTP pass-through on the WRT54G. The solution seemed quite complex. Since I am not using this router on the server side can I leave it alone, or might this be part of my problem?
Sorry for all the dumb questions, but have spent a day on this already, and a little knowledge beats a lot of experimentation. Thanks so much!
Steve