|
greetings all,
i have a windows access and routing server (RAS) installed on win server 2003, it has 2 NIC's - one for the internal company, and one that leads to the external beanches through a 3rd party company's infra structure.
Internal NIC: has the IP 128.128.128.5/24 and leads the Subnet 128.128.128.0/24, the ISA server is on that same subnet with the IP 128.128.128.1 and port 8080.
external NIC: has the IP 10.144.2.2/24 and leads the subnet 10.144.2.0/2, directly connected to GDS(the 3rd party company the has the infra) - this external NIC is directly connected to 10.144.2.1/24 router (that we don't have access to)
the 128.128.128.0/24 is natted to 10.144.2.0/24
GDS routes our 10.144.2.0/24 subnet to the second branch located remotely, this remote branch has the subnet 10.150.1.0/24 - all the PC's in this branch are VPN clients with the RAS server on 10.144.2.0/24 and thus they can ping the 128.128.128.0/24 subent and can be pinged as well, the problem is that the PC's in the remote branch can ping the ISA server, but they can't use the internet.
the config on one of those pc's is:
has the ip: 10.150.1.12/24
VPN client with the RAS in the main branch
VPN gives a random 128.128.128.0/24 ip to this pc other than his 10.150.1.12/24
in the browser network settings on this pc, the proxy server is: '128.128.128.1 with port 8080' and the gateway is the router in GDS,
the subnet 128.128.128.0/24 located internally ( and not remotely ) is working in the same way on the internet and everything is working fine - (same for 10.144.2.0/24)
all ways to make the remote branch access the internet failed...
anybody has an idea ????
please reply back.
|
Register
Search 
Login
