|
Posted by on October 11, 2006, 11:28 am
Please log in for more thread options
Bear with me, as I'm new to the Nortel and its configuration.
Essentially, a location has a Nortel Contivity 1010 that is set up with
the branch office connection to another site, this connection works
fine.
I have set up the Nortel with the ability to be a VPN server, which
works okay, users can log in, get an IP address, and access everything
on the local network without issue.
However, traffic does not pass to the branch office tunnel. If i run a
traceroute, the first hop is different, and not on the local network,
and then it times out. External users can, however, browse the
internet through the far site. I can also use terminal services to get
into another workstation and then browse across the branch office
tunnel with no problems.
An issue may be that VPN users receive an address on a different subnet
(the default 192.168.1 subnet) because when i attempted to modify this
to the local subnet, the nortel VPN server quit giving out addresses to
VPN users. A different problem, but fixing this may solve the problem
above.
Obviously a configuration problem on my end, but i don't know enough
about the nortels to fix it quickly and days on their knowledgebase
site has not resulted in anything useful on this problem. There are
instructions for pushing all traffic through the branch office tunnel,
but there is no internet access through that site and it would drop
everyone off the internet.
Any ideas? Thanks in advance.
|
|
Posted by Morten Rydahl Nielsen on October 12, 2006, 9:13 am
Please log in for more thread options
> Bear with me, as I'm new to the Nortel and its configuration.
> Essentially, a location has a Nortel Contivity 1010 that is set up with
> the branch office connection to another site, this connection works
> fine.
>
> I have set up the Nortel with the ability to be a VPN server, which
> works okay, users can log in, get an IP address, and access everything
> on the local network without issue.
>
> However, traffic does not pass to the branch office tunnel. If i run a
> traceroute, the first hop is different, and not on the local network,
> and then it times out. External users can, however, browse the
> internet through the far site. I can also use terminal services to get
> into another workstation and then browse across the branch office
> tunnel with no problems.
>
> An issue may be that VPN users receive an address on a different subnet
> (the default 192.168.1 subnet) because when i attempted to modify this
> to the local subnet, the nortel VPN server quit giving out addresses to
> VPN users. A different problem, but fixing this may solve the problem
> above.
>
> Obviously a configuration problem on my end, but i don't know enough
> about the nortels to fix it quickly and days on their knowledgebase
> site has not resulted in anything useful on this problem. There are
> instructions for pushing all traffic through the branch office tunnel,
> but there is no internet access through that site and it would drop
> everyone off the internet.
>
> Any ideas? Thanks in advance.
>
Hi.
You need to enable "Allow end user to branch office" in the
"System"->"Forwarding" menu on the 1010.
And of course you need to have routing for your clients IP-range through the
branch office tunnel.
Regards
Morten Rydahl Nielsen
|
| Similar Threads | Posted |
| VPN configuration trouble on Nortel Contivity 1010 | October 11, 2006, 11:28 am |
| Re: Nortel Contivity 1010 VPN Router... How to setup VPN for home users? | March 15, 2006, 11:05 pm |
| Re: Nortel Contivity 1010 VPN Router... How to setup VPN for home users? | March 18, 2006, 8:01 am |
| Nortel Contivity 1010 VPN Router... How to setup VPN for home users? | March 14, 2006, 4:17 pm |
| Contivity 1010 and ADSL | February 24, 2005, 6:16 am |
| Contivity 1010 issues | October 13, 2005, 4:52 pm |
| contivity 1010 default IP | February 28, 2007, 8:06 pm |
| Grief with Contivity VPN Client and 1010 | September 24, 2005, 5:01 pm |
| Contivity 1010 - One Armed mode | December 7, 2005, 5:20 pm |
| contivity 1010 console pinout | February 28, 2007, 8:06 pm |
| Reset contivity 1010 to factory defaults | February 23, 2005, 4:18 pm |
| VPN between nortel 1010 and linksys WRV200 | March 22, 2007, 7:18 am |
| nortel bts configuration | March 30, 2005, 11:43 pm |
| Nortel 7316E - Name configuration? | November 23, 2006, 2:00 pm |
| Nortel 470 IP Filter Configuration. | March 10, 2008, 1:04 pm |
VPN configuration trouble on Nortel Contivity 1010
Yahoo!
Google
Windows Live
del.icio.us
digg
Netscape
> Essentially, a location has a Nortel Contivity 1010 that is set up with
> the branch office connection to another site, this connection works
> fine.
>
> I have set up the Nortel with the ability to be a VPN server, which
> works okay, users can log in, get an IP address, and access everything
> on the local network without issue.
>
> However, traffic does not pass to the branch office tunnel. If i run a
> traceroute, the first hop is different, and not on the local network,
> and then it times out. External users can, however, browse the
> internet through the far site. I can also use terminal services to get
> into another workstation and then browse across the branch office
> tunnel with no problems.
>
> An issue may be that VPN users receive an address on a different subnet
> (the default 192.168.1 subnet) because when i attempted to modify this
> to the local subnet, the nortel VPN server quit giving out addresses to
> VPN users. A different problem, but fixing this may solve the problem
> above.
>
> Obviously a configuration problem on my end, but i don't know enough
> about the nortels to fix it quickly and days on their knowledgebase
> site has not resulted in anything useful on this problem. There are
> instructions for pushing all traffic through the branch office tunnel,
> but there is no internet access through that site and it would drop
> everyone off the internet.
>
> Any ideas? Thanks in advance.
>