Routing 2 subnets in Win08 R2 RRAS
Hi all,
Our network have 2 subnets, 172.30.0.0/18 and 172.30.192.0/18 whereas the subnet mask is 255.255.192.0. In existing there are a Cisco router (172.30.0.254) is using to connect to Internet.
One Win08 R2 server have 2 NICs which is running RRAS, one IP is 172.30.40.254 and other is 172.30.200.254.
By default, all devices in network 172.30.0.0/18 cannot communicate to network 172.30.192.0/18 since they are in different subnets, however, I would like to config one device in 172.30.192.0/18 can access 172.30.0.0/18 network especially the router 172.30.0.254
because the device need to connect to Internet.
How do I config the RRAS? Also, how do I add the static routing table to that one device?
Thanks,
Nick
February 21st, 2011 1:11pm
You do not need to add any static routes if you configure the RRAS router as a NAT router and make this NAT router the default gateway of the machine you want to give Internet access. You only need static routes if you configure the RRAS router as a normal
LAN router. And the extra routing would need to be added to the CIsco, no to the RRAS router or the client machine.Bill
Free Windows Admin Tool Kit Click here and download it now
February 22nd, 2011 3:53am
Hi Nikc,
Thanks for posting here.
Agree with bill, setting RRAS as a normal router or NAT device should the way.
In additional, for static router method you may need setting static routing like below:
On RRAS:
Network Destination
Netmask
Gateway
0.0.0.0
0.0.0.0
172.30.0.254
172.30.0.0
255.255.192.0
172.30.200.254
172.30.192.0
255.255.192.0
172.30.40.254
On internet router(172.30.0.254):
Network Destination
Netmask
Gateway
172.30.192.0
255.255.192.0
172.30.40.254
All computers where in 172.30.192.0/18 should use 172.30.40.254 as the default gateway.
Meanwhile, if you want allow only one of computer where in subnet 172.30.192.0/18 could access internet through subnet 172.30.0.0/18 ,please setting packet filer
on network interface of RRAS to achieve
Configure Static Packet Filters
http://technet.microsoft.com/en-us/library/dd469754(WS.10).aspx
For more information please refer to the links below:
Common Routing Scenarios
http://technet.microsoft.com/en-us/library/dd469784(WS.10).aspx
Manage Static Routes
http://technet.microsoft.com/en-us/library/cc728272(WS.10).aspx
Thanks.
Tiger Li
TechNet Subscriber Support in forum
If you have any feedback on our support, please contact
tngfb@microsoft.com
Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.
February 22nd, 2011 6:32am
Hi,
I already setup a RRAS and config it as a LAN router, by default, RRAS will create General and static route two services, I add the below static route in it.
Interface
Network Destination
Netmask
Gateway
172.30.200.254
172.30.0.0
255.255.192.0
172.30.40.254
172.30.40.254
172.30.192.0
255.255.192.0
172.30.200.254
However, the device 172.30.200.x cannot ping 172.30.0.x even the gateway of 172.30.200.x is set to 172.30.40.254. Have some wrong about my setting?
Many thanks,
Nick
Free Windows Admin Tool Kit Click here and download it now
February 22nd, 2011 5:44pm
Hi Nick,
Thanks for update.
So is there any problem to ping 172.30.40.254 form hosts where in 172.30.192.0/18 subnet with using 172.30.200.254 as default gateway?
I think incorrect route setting on RRAS is the root cause ,could you please post the full route table and “ipconfig /all” result from RRAS
host here for further investigation ?
Meanwhile, have you tried performing “tracert 172.30.0.254 ” form 172.30.192.0/18 subnet hosts and what’s the result ?
Thanks.
Tiger Li
TechNet Subscriber Support in forum
If you have any feedback on our support, please contact
tngfb@microsoft.comPlease remember to click Mark as Answer on the post that helps you, and to click Unmark as Answer if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.
February 23rd, 2011 8:48am
Hi all,
First, thanks for all your support.
In existing, the RRAS is running on VM which have 2 NICs, the ping results as below:
The host in 172.30.192.0/18 subnet where used 172.30.200.254 as default gateway
can ping 172.30.40.254.
The host in 172.30.0.0/18 subnet where used 172.30.40.254 as default gateway
can ping 172.30.200.254.
The host in 172.30.0.0/18 subnet where used 172.30.0.254 as default gateway
cannot ping 172.30.200.254
Below is the route print and ipconfig /all in RRAS.
ipconfig /all
LAN 1:
IP address: 172.30.200.254
Subnet Mask: 255.255.192.0
Default Gateway:
DNS Server: 202.14.67.4, 202.14.67.14
LAN 2:
IP address: 172.30.40.254
Subnet Mask: 255.255.192.0
Default Gateway: 172.30.0.254
DNS Server: 172.30.30.10, 172.30.40.10
route print
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 172.30.0.254 172.30.40.254 266
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
172.30.0.0 255.255.192.0 On-link 172.30.40.254 266
172.30.40.254 255.255.255.255 On-link 172.30.40.254 266
172.30.63.255 255.255.255.255 On-link 172.30.40.254 266
172.30.192.0 255.255.192.0 On-link 172.30.200.254 266
172.30.200.254 255.255.255.255 On-link 172.30.200.254 266
172.30.255.255 255.255.255.255 On-link 172.30.200.254 266
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 172.30.200.254 266
224.0.0.0 240.0.0.0 On-link 172.30.40.254 266
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 172.30.200.254 266
255.255.255.255 255.255.255.255 On-link 172.30.40.254 266
===========================================================================
Persistent Routes:
Network Address Netmask Gateway Address Metric
0.0.0.0 0.0.0.0 172.30.0.254 Default
===========================================================================
Thanks,
Nick
Free Windows Admin Tool Kit Click here and download it now
February 23rd, 2011 10:35am
If you are using LAN routing you cannot get this working simply by making changes on the RRAS server, because that is no where the routing problem is. You have to add extra routing to the gateway router. The gateway router needs to know how it can reach
the second subnet. You need to add a static route to the gateway router to send traffic for the second subnet to the RRAS router. The RRAS router can then deliver the packets to the target machines.
Bill
February 23rd, 2011 12:47pm
Hi Nick,
Thanks for update.
Yes, you should also add a static router on internal interface (172.30.0.254) of internet gateway router, so that all traffics where destination is
172.30.192.0/18 will be sent to RRAS for route .
On internet router(172.30.0.254):
Network Destination
Netmask
Gateway
172.30.192.0
255.255.192.0
172.30.40.254
Please try and post back the result
Thanks.
Tiger Li
TechNet Subscriber Support in forum
If you have any feedback on our support, please contact
tngfb@microsoft.comPlease remember to click Mark as Answer on the post that helps you, and to click Unmark as Answer if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.
Free Windows Admin Tool Kit Click here and download it now
February 24th, 2011 5:37am
Hi Nick,
If there is any update on this issue, please feel free to let us know.
We are looking forward to your reply.
Tiger Li
TechNet Subscriber Support in forum
If you have any feedback on our support, please contact
tngfb@microsoft.comPlease remember to click Mark as Answer on the post that helps you, and to click Unmark as Answer if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.
February 26th, 2011 9:46am
Hi all,
It works now, thanks for all of you. However there are still a little bit problem.
Below is the devices' setting.
Internet Router:
IP address: 172.30.0.254 / 18
Static route: ip route 172.30.192.0 mask 255.255.192.0 172.30.40.254
RRAS:
IP address: 172.30.200.254 / 172.30.40.254
Static route 1: ip route 172.30.192.0 mask 255.255.192.0 172.30.40.254 (Interface: 172.30.40.254)
Static route 2: ip route 172.30.0.0 mask 255.255.192.0 172.30.200.254 (Interface: 172.30.200.254)
Static route 3: ip route 0.0.0.0 0.0.0.0 172.30.0.254 (Interface: 172.30.40.254)
Static route 4: ip route 0.0.0.0 0.0.0.0 172.30.0.254 (Interface: 172.30.200.254)
__________________________________________________________________________________________________
CASE 1:
PC 1 (Windows XP):
IP address: 172.30.40.100 / 18
Gateway: 172.30.40.254
PC 2 (Windows 7):
IP address: 172.30.200.100 /18
Gateway: 172.30.200.254
Apply the above settings, PC 1 and PC 2 can access Internet.
However, when the PC 2 (OS is Windows 7) enabled Windows Firewall, it cannot be pinged by PC 1.
I need to disable the Windows Firewall in PC 2 and then all the devices between 2 subnets can ping each others.
The symptom is occurring in Windows 7 only, no any problems in Windows XP.
Also on the PC2 or Windows 7 machine, when I ping to Internet such as "google.com", it sometimes show "Request timed out".
However the machine can access to Internet through the web browser.
____________________________________________________________________________________________________
CASE 2:
PC 1 (Windows XP):
IP address: 172.30.200.100 / 18
Gateway: 172.30.200.254
PC 2 (Windows 7):
IP address: 172.30.40.100 /18
Gateway: 172.30.40.254
Apply the above settings, PC 1 and PC 2 can access Internet.
The PC 2 (OS is Windows 7) can be pinged by PC 1 even it enabled Windows Firewall.
The PC 2 can ping to Internet such as "google.com" always and it can access to Internet through the web browser as well.
What's the problem?
Free Windows Admin Tool Kit Click here and download it now
February 28th, 2011 3:01pm