Isolated Network Access

Tekidiots · July 6, 2024, 10:25am

Hello Everyone,

I have my Main Network 10.92.0.1 i have a DL380 G7 with Windows Server 2019 running Hyper-V i have setup 2 VM’s first one running PFsense and the second running Server 2019.

i want to be able to connect via rdp to the isolated network on 20.92.0.1 the second server is on 20.92.0.22. i can ping IP’s on my main network from Server 20.92.0.22 but i cant ping anything from the Host Server running the Isolated Network.

what is the best way to remotely access any VM on my Isolated Network makes it easier to work on them instead of using the connect function within Hyper-V

I did try setting up a 2nd External Network in Virtual Switches but running into problems.

Can this be achived by setting up Firewall rules on my Main network PFSense Firewall and the PFsense running as a VM in my Isolated Network?

is VPN another option ?

short video showing my confusion lol

LTS_Tom · July 6, 2024, 11:00am

Yes, VPN would make sense. You could use Tailscale to connect the networks together.

Tekidiots · July 6, 2024, 12:02pm

Thanks Tom I will look into Tailscale VPN

bb77 · July 6, 2024, 12:17pm

Small side note: 20.64.0.1 and 20.64.0.22 are public IP addresses that appear to belong to Microsoft Australia: 20.64.0.0/10 IP range details - IPinfo.io. Generally, it is not considered good practice to use public addresses in private networks unless you own those IP ranges, so I would recommend using something from the RFC1918 ranges instead: Private network - Wikipedia

Tekidiots · July 6, 2024, 12:21pm

Hi bb77,

good point, will look into changing the network IP

Thanks

Tekidiots · July 7, 2024, 8:03am

Hi All,

just had a thought this morning!

on the host machine DL380 G7 has the Embedded LOM Card 4x 1g Nic’s and i installed a Mellanox 10G Card.

if i setup NIC teaming to have 2 NIC’s each in a teaming and the 10G on its own.

I could use the first NIC teaming as the WAN second set for the LAN and setup the 10g card as an Internal Virtual Network which can see the host as the 2 NIC teaming’s are private this will allow the host to see the private network right ? e.g. I should be able to ping and RDP to the VM’s in the Isolated Network

Thoughts?

James
Tekidiots

Tekidiots · July 8, 2024, 8:24pm

Hi All,

i have a work around

i have setup a 3rd Virtual Switch within Hyper-V Manager (Lab-Switch-RDP) External (could have been internal) i have assigned this network to the DC only which allows me to access via RDP from 10.92.0.1 my Main network Range to my Test Domain Network both WAKTEKDC01 192.168.6.20 and WAKTEKSVR01 192.168.6.21

this work around is only temporary and allows me to RDP while working inside my Test Domain Network until i figure out the firewall rules needed to access them without the 3rd Virtual Switch

Thanks
James
Tekidiots