Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
13,726 questions
Manage out Always On VPN client
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(131.20000000000002, 42%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EL%3C/text%3E%3C/svg%3E)
llard !
0
Reputation points
I have Always On VPN working well with split tunneling and routes to internal subnets defined in profile xml. Clients can connect and access internal resources and the VPN server can ping/SMB to clients. The problem is that other internal servers cannot connect to the clients.
On a test internal server I have added a static route to the VPN subnet with the VPN server IP address as the gateway:
route add 10.10.0.0 MASK 255.255.252.0 [VPN server IP]
The Test server knows the next hop:
Test-NetConnection 10.10.0.2 -DiagnoseRouting
ComputerName : 10.10.0.2
RemoteAddress : 10.10.0.2
SelectedSourceAddress : [Test server IP]
OutgoingInterfaceIndex : 11
SelectedNetRoute : DestinationPrefix: 10.10.0.0/22
NextHop: [VPN server IP]
RouteDiagnosticsSucceeded : True
I have checked firewall rules on client and server and they should allow the connection. I have even tried disabling the firewall entirely on the VPN server and VPN client but still nothing seems to reach the client.
Do I need to configure something on the VPN server to allow the traffic from the internal network to be routed to the VPN clients?
Sign in to answer