我们有两台 Windows Server 2008 R2 机器,一台在我们的主办公室,另一台在我们刚刚搬离的新办公室。主办公室之前一直在处理客户端到服务器的 PPTP VPN 连接。
现在我们已经将第二台服务器搬出办公室,我们想要从第二台服务器到主服务器建立按需拨号或持久 VPN 连接。使用自定义设置 RRAS 配置文件,我们已成功建立站点到站点 VPN 连接,以便从第二台服务器本身,它可以访问主办公室中的任何设备并进行通信。但是,第二办公室中的任何连接机器都无法使用此连接,即使使用第二台服务器作为网关也是如此。
请求拨号接口由第二服务器拨入主服务器设置,并在 RRAS 上为 192.168.0.0 设置静态路由,子网掩码为 255.255.0.0 指向此网络接口。
主办公室的网络为 192.168.0.0/16(子网掩码为 255.255.0.0)。第二个办公室的网络为 172.16.100.0/24(子网掩码为 255.255.255.0)。
我们需要采取什么步骤来确保从第二台办公室 PC 到 192.168.xx 地址的流量使用 VPN 路由?非常感谢社区提供的任何帮助。
调试信息
以下是route print第二台服务器的输出:
===========================================================================
Interface List
23...........................Main Office
22...........................RAS (Dial In) Interface
16...e0 db 55 12 fa 02 ......Local Area Connection - Virtual Network
1...........................Software Loopback Interface 1
12...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
24...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
===========================================================================
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 172.16.100.250 172.16.100.222 261
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
<MAIN OFFICE IP> 255.255.255.255 172.16.100.250 172.16.100.222 6
172.16.100.0 255.255.255.0 On-link 172.16.100.222 261
172.16.100.113 255.255.255.255 On-link 172.16.100.113 306
172.16.100.222 255.255.255.255 On-link 172.16.100.222 261
172.16.100.223 255.255.255.255 On-link 172.16.100.222 261
172.16.100.224 255.255.255.255 On-link 172.16.100.222 261
172.16.100.225 255.255.255.255 On-link 172.16.100.222 261
172.16.100.226 255.255.255.255 On-link 172.16.100.222 261
172.16.100.227 255.255.255.255 On-link 172.16.100.222 261
172.16.100.228 255.255.255.255 On-link 172.16.100.222 261
172.16.100.229 255.255.255.255 On-link 172.16.100.222 261
172.16.100.230 255.255.255.255 On-link 172.16.100.222 261
172.16.100.255 255.255.255.255 On-link 172.16.100.222 261
192.168.0.0 255.255.0.0 192.168.101.87 192.168.101.17 266
192.168.101.17 255.255.255.255 On-link 192.168.101.17 266
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 172.16.100.222 261
224.0.0.0 240.0.0.0 On-link 172.16.100.113 306
224.0.0.0 240.0.0.0 On-link 192.168.101.17 266
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 172.16.100.222 261
255.255.255.255 255.255.255.255 On-link 172.16.100.113 306
255.255.255.255 255.255.255.255 On-link 192.168.101.17 266
===========================================================================
Persistent Routes:
Network Address Netmask Gateway Address Metric
0.0.0.0 0.0.0.0 192.168.0.200 Default
0.0.0.0 0.0.0.0 172.16.100.250 Default
===========================================================================
IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
16 261 fe80::/64 On-link
16 261 fe80::edf4:85c6:3c15:dcbe/128
On-link
1 306 ff00::/8 On-link
16 261 ff00::/8 On-link
22 306 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
以下是route print第二台办公室电脑的输出:
===========================================================================
Interface List
11...10 78 d2 32 53 27 ......Atheros AR8151 PCI-E Gigabit Ethernet Controller
1...........................Software Loopback Interface 1
12...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 172.16.100.250 172.16.100.103 10
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
172.16.100.0 255.255.255.0 On-link 172.16.100.103 266
172.16.100.103 255.255.255.255 On-link 172.16.100.103 266
172.16.100.255 255.255.255.255 On-link 172.16.100.103 266
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 172.16.100.103 266
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 172.16.100.103 266
===========================================================================
Persistent Routes:
None
IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
11 266 fe80::/64 On-link
11 266 fe80::e973:de17:a045:aa78/128
On-link
1 306 ff00::/8 On-link
11 266 ff00::/8 On-link
===========================================================================
Persistent Routes:
None