![[H]ard|Forum](/styles/hardforum/xenforo/logo_dark.png){kind=logo}
Hello,
I've got a Windows 2012 R2 Datacenter server running in an Azure VM for experimentation/home use. I've configured it to support a VPN through RRAS. The VPN works, insofar as clients can connect and access resources on the VPN. In case it matters, the VPN uses the SSTP protocol over port 443, and clients are connected to the 10.0.0.x subnet.
How do I configure this VPN as a "hub and spoke" architecture? What I want is for any connected client to be able to communicate with other clients using their corresponding VPN IP addresses, and have all traffic between clients for the 10.0.0.x subnet routed through the VPN server.
Here is an excerpt from the current routing table on the RRAS VPN server:
And here is an excerpt from one of the clients connected to the VPN:
The client IPs in this example are 10.0.0.3 and 10.0.0.4. The VPN server is at 10.0.0.1.
I'm familiar with the fundamentals of networking but have not done anything like this before. I'll speculate that I can fix it by modifying these routing tables somehow, but I'm unsure where to start. Does anyone have any suggestions? If you need more information, please let me know.
Thanks for any tips!
(Edit: It occurred to me that the Network&Security forum would likely be more a appropriate location for this thread -- sorry about that).
I've got a Windows 2012 R2 Datacenter server running in an Azure VM for experimentation/home use. I've configured it to support a VPN through RRAS. The VPN works, insofar as clients can connect and access resources on the VPN. In case it matters, the VPN uses the SSTP protocol over port 443, and clients are connected to the 10.0.0.x subnet.
How do I configure this VPN as a "hub and spoke" architecture? What I want is for any connected client to be able to communicate with other clients using their corresponding VPN IP addresses, and have all traffic between clients for the 10.0.0.x subnet routed through the VPN server.
Here is an excerpt from the current routing table on the RRAS VPN server:
Code:
Network Destination Netmask Gateway Interface Metric
10.0.0.1 255.255.255.255 On-link 10.0.0.1 279
10.0.0.3 255.255.255.255 10.0.0.3 10.0.0.1 24
10.0.0.4 255.255.255.255 10.0.0.4 10.0.0.1 24
Code:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.2 10
10.0.0.0 255.0.0.0 10.0.0.1 10.0.0.3 11
10.0.0.3 255.255.255.255 On-link 10.0.0.3 266I'm familiar with the fundamentals of networking but have not done anything like this before. I'll speculate that I can fix it by modifying these routing tables somehow, but I'm unsure where to start. Does anyone have any suggestions? If you need more information, please let me know.
Thanks for any tips!
(Edit: It occurred to me that the Network&Security forum would likely be more a appropriate location for this thread -- sorry about that).