Forgive me if this is not the right place to post this, but it's a bit mixed and Microsofty.
We have a dual-NIC ISA Server 2006 running our VPN, and clients were connecting to it fine when we were set up as a flat network, but we've now set up VLANs and the VPN doesn't work as it used to.
Clients can connect to the VPN correctly, but can no longer advance past the firewall onto our network as they used to be able to.
Our server has the following config:
LAN: 10.1.1.110
mask: 255.255.255.0
gw: 10.1.1.1 (vlan id 101)
Internal address range to give out to clients: 10.1.10.1-254
When clients connect they receive similar to the following:
IP: 10.1.10.4
mask: 255.255.255.255
gw: 10.1.10.4
ISA Server itself can connect to other servers and workstations on different subnets and VLANS on the LAN, but VPN clients cannot even ping the Internal server address ISA uses (first in range) of 10.1.10.1
Where could we be going wrong? I'm entirely new to segmenting the network in this way and am stumped on this one.
any help gratefully received
Kev