Howdy,
Pic for good measure: https://imgur.com/a/8L8sJW5
Hoping to get some assistance on this issue as it has me absolutely pulling my hair out.
I’ve rolled out an Unifi system (a few POE / non-POE switches, 6 APs, CloudKey, and a USG-Pro-4) with a number of VLANS and a VPN.
We have some Windows VMs running on a HyperV server in the main (non-VLAN) 172.31.5.1/24 subnet. If I connect to the wireless network (or ethernet) of that VLAN I have full access to Remote Desktop to the various VMs on that Hyper-V server. All good.
However, if I connect either over the VPN (which is a 172.31.90.1/24 subnet) or even on a separate secondary network (example: VLAN55 with a 172.31.55.1/24 subnet) I can only access some of the Remote Desktop clients. WTF?
I’ve disabled all of my ‘Drop’ firewall rules and have verified that the Windows servers / machines don’t think they’re part of a Public network after the network switch.
So basically:
On main network, I can ping and remote desktop into:
.
Client IP: 172.31.5.204
---------------------------
172.31.5.20 (a Unifi AP) - Ping works
172.31.5.21 (Hyper-V Core) - Ping and Remote Desktop works
172.31.5.50 (a VM running on the .21 core) - Ping and Remote Desktop works
172.31.5.51 (a VM running on the .21 core) - Ping and Remote Desktop works
172.31.5.71 (NVR) - Ping and Web access works
172.31.5.222 (physical windows machine) - Ping and Remote Desktop works
172.31.5.241 (a VM running on the .21 core) - Ping and Remote Desktop works
.
Through the VPN (172.31.90.1/24):
.
Client IP: 172.31.90.1
---------------------------
172.31.5.20 (a Unifi AP) - Ping works
172.31.5.21 (Hyper-V Core) - Ping and Remote Desktop works
172.31.5.50 (a VM running on the .21 core) - Ping and Remote Desktop DO NOT work
172.31.5.51 (a VM running on the .21 core) - Ping and Remote Desktop DO NOT work
172.31.5.71 (NVR) - Ping and web access works
172.31.5.222 (physical windows machine) - Ping and Remote Desktop works
172.31.5.241 (a VM running on the .21 core) - Ping and Remote Desktop works
.
Through a second wireless network VLAN55 (172.31.55.1/24)
.
Client IP: 172.31.55.55
---------------------------
172.31.5.20 (a Unifi AP) - Ping works
172.31.5.21 (Hyper-V Core) - Ping and Remote Desktop works
172.31.5.50 (a VM running on the .21 core) - Ping and Remote Desktop DO NOT work
172.31.5.51 (a VM running on the .21 core) - Ping and Remote Desktop DO NOT work
172.31.5.71 (NVR) - Ping and web access works
172.31.5.222 (physical windows machine) - Ping and Remote Desktop DO NOT work
172.31.5.241 (a VM running on the .21 core) - Ping and Remote Desktop works
.
Is it a subnet mask issue? Static routing? Firewall?? The inconsistencies are baffling to me. Any assistance in getting where I should be looking to would be greatly appreciated!