Astaro User Bulletin Board
Go Back   Astaro User Bulletin Board > Other Astaro Products > Astaro Secure Client (ASC)
Reload this Page ASC v9 setup enables VPN but disables local net
Register FAQ Members List Calendar Search Today's Posts Mark Forums Read

Welcome to the Astaro User Bulletin Board.
If this is your first visit, be sure to check out the FAQ by clicking the link above. You may have to register before you can post: click the register link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below.

Reply
 
LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old 06-05-2007, 11:16 AM
Junior Member
  
Join Date: May 2002
Posts: 23
Default ASC v9 setup enables VPN but disables local net
I'm currently trying out the 30 days trial version of Astaro Secure Client.

The VPN connection works fine, I can connect to the intranet on another site without problems. By the way I like the way that system administrator just handed out a .p12 and .ini file and installation takes only a few seconds. Thumbs up for that approach!

However, now my local network doesn't work like before. I was hoping that disconnecting the VPN would bring the setup back to the original but that isn't the case. Below are my observations, please comment:

Ethernet card IP is 192.168.1.26 net mask 255.255.255.0
VPN IP was set to 192.168.1.88 net mask 255.255.255.0

I can access the gateway (ADSL router) 192.168.1.1 based on the fact that I can browse the Internet.

I can't access hosts on local net such as network printer and other PC on net.

I can't ping anything on local net, including gateway (192.168.1.0)

From another PC on the local net I cannot access a share on 192.168.1.26 - and also not on 192.168.1.88.

Routes with VPN connection connected and disconnected are listed below. It seems the 192.168.1.26 is disabled - metric above 16 is apparently too long a path?

Am I doing something wrong? Or is this a bug in ASC?

Looking forward to hearing from you,

Thanks,
Michael

VPN connection : Connected.

================================================== =========================
Interface List
0x1 ........................... MS TCP Loopback interface
0x3 ...02 00 52 9c 16 cc ...... ASTARO Secure Client Adapter - Packet Scheduler Miniport
0x20002 ...00 90 27 59 94 37 ...... Intel(R) PRO/100+ Management Adapter - Packet Scheduler Miniport
================================================== =========================
================================================== =========================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.26 20
xx.yy.zz.gw 255.255.255.255 192.168.1.1 192.168.1.26 1
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
192.168.1.0 255.255.255.0 192.168.1.26 192.168.1.26 20
192.168.1.0 255.255.255.0 192.168.1.88 192.168.1.88 1
192.168.1.26 255.255.255.255 127.0.0.1 127.0.0.1 20
192.168.1.88 255.255.255.255 127.0.0.1 127.0.0.1 1
192.168.1.255 255.255.255.255 192.168.1.26 192.168.1.26 20
192.168.1.255 255.255.255.255 192.168.1.88 192.168.1.88 1
192.168.100.0 255.255.255.0 0.0.0.1 192.168.1.88 2
192.168.100.0 255.255.255.0 192.168.1.89 192.168.1.88 1
224.0.0.0 240.0.0.0 192.168.1.26 192.168.1.26 20
224.0.0.0 240.0.0.0 192.168.1.88 192.168.1.88 1
255.255.255.255 255.255.255.255 192.168.1.26 192.168.1.26 1
255.255.255.255 255.255.255.255 192.168.1.88 192.168.1.88 1
Default Gateway: 192.168.1.1
================================================== =========================
Persistent Routes:
Network Address Netmask Gateway Address Metric
xx.yy.zz.gw 255.255.255.255 192.168.1.1 1



VPN connection: Disconnected:

================================================== =========================
Interface List
0x1 ........................... MS TCP Loopback interface
0x3 ...02 00 52 9c 16 cc ...... ASTARO Secure Client Adapter - Packet Scheduler Miniport
0x20002 ...00 90 27 59 94 37 ...... Intel(R) PRO/100+ Management Adapter - Packet Scheduler Miniport
================================================== =========================
================================================== =========================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.26 20
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
192.168.1.0 255.255.255.0 192.168.1.26 192.168.1.26 20
192.168.1.0 255.255.255.0 192.168.1.88 192.168.1.88 1
192.168.1.26 255.255.255.255 127.0.0.1 127.0.0.1 20
192.168.1.88 255.255.255.255 127.0.0.1 127.0.0.1 1
192.168.1.255 255.255.255.255 192.168.1.26 192.168.1.26 20
192.168.1.255 255.255.255.255 192.168.1.88 192.168.1.88 1
192.168.100.0 255.255.255.0 0.0.0.1 192.168.1.88 1
224.0.0.0 240.0.0.0 192.168.1.26 192.168.1.26 20
224.0.0.0 240.0.0.0 192.168.1.88 192.168.1.88 1
255.255.255.255 255.255.255.255 192.168.1.26 192.168.1.26 1
255.255.255.255 255.255.255.255 192.168.1.88 192.168.1.88 1
Default Gateway: 192.168.1.1
================================================== =========================
Persistent Routes:
None
Reply With Quote
  #2 (permalink)  
Old 06-07-2007, 07:00 PM
Senior Member
  
Join Date: Dec 2005
Location: Minnesota
Posts: 177
Default
I want to say that since both are on the same subnet that your local subnet will be disabled while connected to VPN because the VPN client will take over the routing in this case.

We've done a few of these, and we try to make sure that the VPN address is set to some subnet that most likely won't be in use anywhere else.
__________________
Jon Johnston
Creative Business Solutions
Astaro Preferred Partner
Website:http://www.cbsol.com
Reply With Quote
  #3 (permalink)  
Old 06-12-2007, 08:20 AM
Junior Member
  
Join Date: May 2002
Posts: 23
Default ASC v9 setup enables VPN but disables local net
That helped! Thanks!

Isn't the installation wrong by default? It seems the IP settings are fetched from a DHCP server and thus data are from an existing network?

Michael
Reply With Quote
Reply

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On


All times are GMT. The time now is 06:30 AM.

 
Contact Us - Astaro User Bulletin Board - Archive - Top

Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2010, Jelsoft Enterprises Ltd.


These pages are specifically maintained for the discussion of firewall issues within the Open Source community, and might already reflect new alpha/beta releases under development. Please refer to our product specifications for the functionality of the actual release. Discussions of new/enhanced functionality does not constitute a commitment of Astaro, to integrate this functionality into future releases. issues within the Open Source community, and might already reflect new alpha/beta releases under development. Please refer to our product specifications for the functionality of the actual release. Discussions of new/enhanced functionality does not constitute a commitment of Astaro, to integrate this functionality into future releases.