• 0

[HELP] Modifying routing tables


Question

nav1

I work in an off-shoring company, so I use a VPN connection to the external company from the office. I need to be able to access all the resources in the local network also. The thing is that whenever I connect to the VPN network, the routing tables for my PC change, adding a new route with a smaller metric, making my connection go all the way to the outside company, and then return back here, which makes no sense.

This makes the access to the LAN extremely slow, making many internal applications to timeout. I need to use the VPN at all times, but I also need to access the local resources as fast as possible. I tried adding a persistent route with a 1 metric, but whenever I connect to VPN, it causes my added route metric to change to 2, and adds a new route with a 1 metric.

How can I solve this ? I'm using Windows XP Pro SP1, btw.

Link to post
Share on other sites

6 answers to this question

Recommended Posts

  • 0
+BudMan

Tell your VPN connection - not to set the VPN connection as the default gateway (uncheck the checkbox).

Under Properties of your VPN connection

post-14624-1108588131_thumb.jpg

Link to post
Share on other sites
  • 0
nav1
Tell your VPN connection - not to set the VPN connection as the default gateway (uncheck the checkbox).

Under Properties of your VPN connection

585483356[/snapback]

Well, I'm not using the Microsoft VPN connection, I'm using a custom VPN client from my company.

Link to post
Share on other sites
  • 0
+BudMan

Well what client are you using - then?

Show us a route print before your connection to the VPN, and then one after - ie somthing like this;

Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1   192.168.1.100       10
        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1       1
      192.168.1.0    255.255.255.0    192.168.1.100   192.168.1.100       10
    192.168.1.100  255.255.255.255        127.0.0.1       127.0.0.1       10
    192.168.1.255  255.255.255.255    192.168.1.100   192.168.1.100       10
        224.0.0.0        240.0.0.0    192.168.1.100   192.168.1.100       10
  255.255.255.255  255.255.255.255    192.168.1.100   192.168.1.100       1
Default Gateway:       192.168.1.1

Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      10.40.2.146     10.40.2.146       1
          0.0.0.0          0.0.0.0      192.168.1.1   192.168.1.100       11
        10.40.2.0    255.255.255.0      10.40.2.146     10.40.2.146       10
      10.40.2.146  255.255.255.255        127.0.0.1       127.0.0.1       10
   10.255.255.255  255.255.255.255      10.40.2.146     10.40.2.146       10
    xx.xxx.xxx.xx  255.255.255.255      192.168.1.1   192.168.1.100       1
        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1       1
      192.168.1.0    255.255.255.0    192.168.1.100   192.168.1.100       10
      192.168.1.0    255.255.255.0      10.40.2.146     10.40.2.146       1
    192.168.1.100  255.255.255.255        127.0.0.1       127.0.0.1       10
    192.168.1.255  255.255.255.255    192.168.1.100   192.168.1.100       10
        224.0.0.0        240.0.0.0      10.40.2.146     10.40.2.146       10
        224.0.0.0        240.0.0.0    192.168.1.100   192.168.1.100       10
  255.255.255.255  255.255.255.255      10.40.2.146     10.40.2.146       1
  255.255.255.255  255.255.255.255    192.168.1.100   192.168.1.100       1
Default Gateway:       10.40.2.146

Then I can tell you what you need to do - to change the routes, etc..

Most VPN clients have an option to allow for lan access, but maybe they do not want you to do it - it can considered a security issue - if you allow for split tunneling.

Link to post
Share on other sites
  • 0
nav1
Well what client are you using - then?

Show us a route print before your connection to the VPN, and then one after - ie somthing like this;

Then I can tell you what you need to do - to change the routes, etc..

Most VPN clients have an option to allow for lan access, but maybe they do not want you to do it - it can considered a security issue - if you allow for split tunneling.

585508134[/snapback]

Ok. The client is Nortel Contivity VPN client, which doesn't really has that many options. Here are my routes before and after VPN, respectively.

Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
      112.80.57.0    255.255.255.0    112.80.57.110   112.80.57.110       20
    112.80.57.110  255.255.255.255        127.0.0.1       127.0.0.1       20
  112.255.255.255  255.255.255.255    112.80.57.110   112.80.57.110       20
        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1       1
        224.0.0.0        240.0.0.0    112.80.57.110   112.80.57.110       20
  255.255.255.255  255.255.255.255    112.80.57.110   112.80.57.110       1
  255.255.255.255  255.255.255.255    112.80.57.110               3       1
===========================================================================
Persistent Routes:
  None




Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0   105.253.128.16  105.253.128.16       1
          0.0.0.0          0.0.0.0      112.80.57.1   112.80.57.110       21
    105.253.128.0    255.255.128.0   105.253.128.16  105.253.128.16       30
   105.253.128.16  255.255.255.255        127.0.0.1       127.0.0.1       30
  105.255.255.255  255.255.255.255   105.253.128.16  105.253.128.16       30
      112.80.57.0    255.255.255.0    112.80.57.110   112.80.57.110       20
      112.80.57.0    255.255.255.0   105.253.128.16  105.253.128.16       1
    112.80.57.110  255.255.255.255        127.0.0.1       127.0.0.1       20
  112.255.255.255  255.255.255.255    112.80.57.110   112.80.57.110       20
        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1       1
   166.68.134.173  255.255.255.255      112.80.57.1   112.80.57.110       1
        224.0.0.0        240.0.0.0    112.80.57.110   112.80.57.110       20
        224.0.0.0        240.0.0.0   105.253.128.16  105.253.128.16       1
  255.255.255.255  255.255.255.255   105.253.128.16  105.253.128.16       1
  255.255.255.255  255.255.255.255    112.80.57.110   112.80.57.110       1
Default Gateway:    105.253.128.16
===========================================================================

The network I'm interested in is the 112.80.57.0. Sorry for not posting this before, was a little reluctant to since it might be sensitive info, but I figured it shouldn't be. Hope you can help me.

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    No registered users viewing this page.