A few weeks ago, I had a remote employee unable to connect
to organization VPN.
Initially, I got the basic user information and determine her home network had the
same network as organization internal network, so her computer had number of ways
knowing where to the send the traffic beyond what the administrative distance
and routes said.
So I made a persistent route on her machine that was only
active if the VPN interface on her machine was active and set the
administrative distance for that route to a lower distance than the default
route, pointed that route to the switch over the VPN and boom, she could then
connect to the network on that one specific IP which is what she needed (also
had to turn off setting the VPN as the default gateway so not all of her
traffic was forwarded).
The command on her windows machine looked something
like:
route -p ADD 10.1.1.128 MASK 255.255.255.255
10.10.254.254 METRIC 1 IF 38
No comments:
Post a Comment