vpn client can ping server only

Clearapps network inventory
software.

VPN client can ping the VPN server only

Situation: one of our clients setup a VPN on windows server. The VPN client can ping the VPN server without problem. However, they can’t access other network resources and ping receives ”time out” message.

Investigation: 1. The Windows server is behind a router with PPTP pass-through.

2. The server comes with two NICs and both are enabled.

3. The ipconfig /all display both NICs’ IPs are in the same IP range, 10.0.0.0/8.

Analysis: Any windows multihomed servers should not use the same IP range if it comes with two or more NICs. In general, if you have a router or firewall protecting your LAN, you can create a VPN using just one NIC; if you don’t have a router or firewall protecting your LAN, you should enable RRAS on a Windows server with two NICs using the different IP ranges. In some cases, you may want to have more secure LAN even the LAN is behind a router or firewall, you can setup a Windows server as VPN using two NICs. But, they must be in the different subnets. For example, one NIC is 192.168.0.2/255.255.255.0 and another is 10.0.0.2/255.0.0.0.