Hello,
i have a little complex question.
The Scenario is following:
- One physical Server, called Hyper-V-Host, which is located in a big Data-Center, Windows Server 2012
- Some vritual HyperV-Machines, Windows Server 2012, Winows 7
On the physical Server we have enabled a virtual Switch with two virtual Interfaces, one called "external", one called "internal".
We have enabled NAT via Routing and RAS, because the virtual machines does need access to the internet of course. Every VM gets the virtual "internal" NIC assigned.
Also, we have some IPSec-Connections to different Routers of Locations of the Customer. These IPSec-Tunnels are created with the Windows Built-In extended Firewall.
First thing to mention is, that if routing and ras is enabled a ping to the outside networks is not answered. If i disable Routing&RAS the ping to the outside networks works just fine. because we need ping only for debug, this is no problem so far, but now here comes my problem.
i need a RDP-Connection from one client of the outside-networks to one of the virtual machines. so basically a port-redirect would be all necessary.
The VPN-Connections are built-up with the public ip-adresses of the physical server as endpoint. if i use the ip of the virtual internal ip (192.168.137.1) or the complete subnet (192.168.137.0/24) the vpn-connection does not work. because of this, the complete traffic to this server does go the way through the VPN-Tunnel. I tried to create a port-forward using the NAT of R&RAS but this seems to work over the external interface, but not through the vpn-tunnel.
the simple question is: how can i solve this?
and btw - is there any solution for the ping-problem?
any hint would be great!