Everyone lies...
On Fri, Feb 21, 2014 at 6:21 PM, Jimmy Tran <[email protected]> wrote: > So this is a printing shop. Someone told the owner to buy a range > extender to extend the wi-fi from site A to the to site B. The reason is > so users can print to a specific printer from site B to site A by switching > wifi networks. That is the reason why I decided to setup a VPN between the > offices. > > > > Problem occurred when they received a new printer in site B. The tech > thought that extender was a switch so he took it and moved a bunch of wires > around. Now that wifi network at site A is extended to site B over > ethernet. Big pain the the a$$. Then when I asked if anyone changed > anything, the answer was uh... no. > > > > *From:* [email protected] [mailto: > [email protected]] *On Behalf Of *Charles Sullivan > *Sent:* Friday, February 21, 2014 3:13 PM > > *To:* [email protected] > *Subject:* RE: [NTSysADM] strange network issue > > > > I was dying to hear the outcome, so thanks for letting us know. Do you > mean that all of the clients are using WiFi and that because it's the same > company in the other building, they were all configured to use the other > building's access point as one of their automatic networks? > > > > Just curious, because this is a good one. > > Thanks. > > > > Charlie Sullivan > > Sr. Windows Systems Administrator > > > > *From:* [email protected] [mailto: > [email protected]] *On Behalf Of *Jimmy Tran > *Sent:* Friday, February 21, 2014 5:02 PM > > *To:* [email protected] > *Subject:* RE: [NTSysADM] strange network issue > > > > Turned out to be a wifi extender that was then plugged into the network by > some idi0t at the office. Thanks for your pointers. > > > > Jimmy > > > > > > *From:* [email protected] [ > mailto:[email protected] <[email protected]>] *On > Behalf Of *Christopher Bodnar > *Sent:* Thursday, February 20, 2014 1:40 PM > > *To:* [email protected] > *Subject:* RE: [NTSysADM] strange network issue > > > > If you are able to get from site A to site B with the cable modem > disconnected, then there is some other route to the remote site. Wi-Fi > Hot-spot.....rouge router.... direct cable access run you are not aware > of..... > > *Christopher Bodnar* > Enterprise Architect I, Corporate Office of Technology:Enterprise > Architecture and Engineering Services > > Tel 610-807-6459 > 3900 Burgess Place, Bethlehem, PA 18017 > [email protected] > > > > * The Guardian Life Insurance Company of America* > > www.guardianlife.com > > > > > > > From: Jimmy Tran <[email protected]> > To: "[email protected]" <[email protected]> > Date: 02/20/2014 04:36 PM > Subject: RE: [NTSysADM] strange network issue > Sent by: [email protected] > > ------------------------------ > > > > > Yes, I can access the other wise of the vpn when the tunnel disconnected > and when the appliance off. When I unplug the cable modem, the machines > that got its IP from that network still have access. > > I forgot to do a traceroute but will do one when I go back in an hour or > so. > > Jimmy > > *From:* [email protected] [ > mailto:[email protected] <[email protected]>] *On > Behalf Of *Christopher Bodnar > * Sent:* Thursday, February 20, 2014 1:29 PM > * To:* [email protected] > * Subject:* RE: [NTSysADM] strange network issue > > You can access the opposite side with the VPN tunnel disconnected? Do a > traceroute and find what it's going through to get there. If you pull the > plug on the cable modem, does it fail? > > *Christopher Bodnar* > Enterprise Architect I, Corporate Office of Technology:Enterprise > Architecture and Engineering Services > > Tel 610-807-6459 > 3900 Burgess Place, Bethlehem, PA 18017 > [email protected] > > > > * The Guardian Life Insurance Company of America* > > www.guardianlife.com > > > > > > > > From: Jimmy Tran <[email protected]> > To: "[email protected]" <[email protected]> > Date: 02/20/2014 04:23 PM > Subject: RE: [NTSysADM] strange network issue > Sent by: [email protected] > > > ------------------------------ > > > > > > That is what I thought but it still works with the VPN disconnected. I > even changed the darn thing to a cheapo dlink home router and I can still > access the other side. > > * From:* [email protected] [ > mailto:[email protected] <[email protected]>] *On > Behalf Of *Christopher Bodnar > * Sent:* Thursday, February 20, 2014 1:17 PM > * To:* [email protected] > * Subject:* Re: [NTSysADM] strange network issue > > It sounds like DHCPRELAY is enabled on the inside interfaces of the cisco > firewalls, which is not what you want. It's allowing the packets to get to > the opposite side of the tunnel. > > *Christopher Bodnar* > Enterprise Architect I, Corporate Office of Technology:Enterprise > Architecture and Engineering Services > > Tel 610-807-6459 > 3900 Burgess Place, Bethlehem, PA 18017 > [email protected] > > > > * The Guardian Life Insurance Company of America* > > www.guardianlife.com > > > > > > > > From: Jimmy Tran <[email protected]> > To: "[email protected]" <[email protected]> > Date: 02/20/2014 04:06 PM > Subject: [NTSysADM] strange network issue > Sent by: [email protected] > > > > ------------------------------ > > > > > > > 2 offices, both have cisco rv220w firewalls, both use Comcast business and > are across the street from each other. Office A has a 192.168.0.0 network > and office B has a 10.0.1.0 network. Each offices respective firewall > handles dns and dhcp. > > Background: I set a site to site vpn between the two locations. They can > access each other's offices. > > Problem: I go in today because users complain they cannot access certain > file share. I look at their IP address on the workstation sharing the > files in Site B and sure enough, they have IP addresses from site A. > > I've been pulling my hair out trying to figure out how this is possible. > I decided to kill the vpn, reboot both firewalls. I do a ipconfig > /release and /renew on the said file server (workstation), it still pulls > an IP address from site A. I then give the said workstation a static IP > from its own subnet, everything works fine. I can access everything in its > own subnet. I cannot access the Site A. > > I then tested and gave it a static IP from the remote office (Site A). I > can now see everything in the remote office. > > I decided to shutdown the firewall and Comcast modem. You would think I > can't get out of the office but I can still access the remote site and even > get online. > > What in the world is the problem? Is it possible Comcast came out, did > some work and screwed something up? I have a Comcast field tech coming out > in a few hours but would like to figure out what the heck is going on. > > Does anyone have any suggestions on what I can do to troubleshoot this? > > -Jimmy > > > > > ------------------------------ > > > > ----------------------------------------- This message, and any > attachments to it, may contain information that is privileged, > confidential, and exempt from disclosure under applicable law. If the > reader of this message is not the intended recipient, you are notified that > any use, dissemination, distribution, copying, or communication of this > message is strictly prohibited. If you have received this message in error, > please notify the sender immediately by return e-mail and delete the > message and any attachments. Thank you. > > > ------------------------------ > > > ----------------------------------------- This message, and any > attachments to it, may contain information that is privileged, > confidential, and exempt from disclosure under applicable law. If the > reader of this message is not the intended recipient, you are notified that > any use, dissemination, distribution, copying, or communication of this > message is strictly prohibited. If you have received this message in error, > please notify the sender immediately by return e-mail and delete the > message and any attachments. Thank you. > ------------------------------ > > ----------------------------------------- This message, and any > attachments to it, may contain information that is privileged, > confidential, and exempt from disclosure under applicable law. If the > reader of this message is not the intended recipient, you are notified that > any use, dissemination, distribution, copying, or communication of this > message is strictly prohibited. If you have received this message in error, > please notify the sender immediately by return e-mail and delete the > message and any attachments. Thank you. >
<<inline: image001.jpg>>
