Hall of Fame

1. keith_ala...479,504
2. pwindell170,773
3. Raj-GT110,400
4. Bembi50,100
5. ahmedabd...36,652
6. HayesJupe34,500
7. Kumar_J...26,500
8. hau_it20,050
9. PaciB18,150
10. Hisham_...16,856
11. Amirchou...14,100
12. MrMander...12,750
13. Mestha11,700
14. demazter11,348
15. Byty11,322
16. Sulimanw11,318
17. Bamit9910,140
18. Akhater10,000
19. arnold9,800
20. chuku9,664
21. Rajith_En...8,750
22. Kieran_B...8,500
22. Paranorm...8,500
24. MPECSInc7,860
25. RobWill7,750

1. keith_ala...2,010,741
2. MrMander...199,610
3. pwindell170,773
4. TechSoEasy135,046
5. r-k112,088
6. Raj-GT110,400
7. toniur103,414
8. EricTViking85,505
9. What9078,397
10. Bembi77,268
11. RobWill73,630
12. Nyah24771,369
13. KCTS64,902
14. richrumble58,834
15. Sembee50,060
16. PowerIT47,366
17. war147,222
18. HayesJupe42,575
19. johnb676741,520
20. lrmoore38,211
21. ahmedabd...36,652
22. oBdA36,250
23. tigermatt35,792
24. Kumar_J...34,828
25. arnold34,140

	[x] Posted via EE Mobile
	Search, ask, and monitor your questions on the go with EE Mobile. Visit Experts Exchange from your mobile device and never be out of touch again.

Question

	[x] Attachment Details

[x]

The Solution Rating System

With so many solutions, how can you tell which solutions are most likely to help you and which ones are not? To provide you with a tool to use, we rate our solutions based on various elements that most accurately determine if a solution is a quality solution. To explain what factors affect the solution rating, here are the elements we take into consideration when formulating our solution rating.

The Grade of the Solution
The Zone Rank of the Expert Providing the Solution
The Number of Author and Expert Comments
The Number of Experts Contributing
The Feedback of the Community

Your Input Matters
Because of the way the system is set up, the most important variable in this equation is you. As a member of Experts Exchange, you are able to cast your vote on the quality of the solutions in regard to how complete, accurate, helpful and easy to understand each solution is. When you provide your feedback, each rating is adjusted accordingly. So, if you see a solution that has a poor rating that you think is a good solution, let us know by rating it. As you do, the rating will be adjusted and will become more accurate for other members of our site.

If you have any suggestions that you would like to make for our rating system, please ask a question in the Suggestions Zone of Community Support.

Thank you!

7.6

SBS2003, ISA2004

Asked by GillianBeaumontLegal in MS Forefront-ISA, Virtual Private Networking (VPN), SBS Small Business Server

Tags: SBS2003, ISA2004

I am now completely stumped with a VPN connection.

I have SBS2003 with ISA2006 at one end (Branch Office), and SBS2003/ISA2004 (Head Office) at the other. I can create a site-to-site connection from the Head Office to the Branch Office - works a treat once approriate rules were put in place. However, no matter what I do or how hard I try, I cannot get a connection through from the Branch to the Head Office (which is the one I need.)

Whenever I dial (either a RAS connection or by using the site-to-site creation wizard) the Head Office, I get an Error 628 disconnect. On the other hand, if I dial from a client at the Head office to the Head Office server, I can get a connection. I figure at lease the VPN end of the server is working.

I can connect from Branch to Home, so I guess I understand what I am trying to do.

The variables therefore seem to be the routers on either end. I have used the PPTP passthrough and checked the Port 1723 and GRE are opened. Using the Microsoft Windows Network Monitor, I can see the GRE packets at the Head Office Network, so I don't think I am blocking them. Just to be safe, I put the server in the DMZ in the hope that this would work. No luck.

I can telnet 1723, so I know that it is open. ISA logs show the packets being received, and then the connection is closed.

I have tried multiple users, ensuring that all are checked for dial in access.

Experience tells me that I am doing something really dumb, and have just spent the last how many hours going nowhere.

The setup is essentially:

Head Office
Private Adapater - 192.168.0.0-192.168.0.255 (server 192.168.0.21)
Public Adapter: 10.0.0.1 (server 10.0.0.21)
Router: Dlink DSL G604T - it makes the ADSL connection etc

Branch Office
Private Adapter: 192.168.1.0 - 192.168.1.255 (server 192.168.1.21)
Public Adapater: 172.16.0.0 - 172.16.0.255 (server 172.16.0.1)

The biggest clue I have so far is messed up routing. When I look at the public network on the Head Office Side, and I chose Add Adapter, I would have thought I would get only 10.0.0.0-10.0.0.255 plus loopback addresses etc. Instead, I get just about every address known to the universe. If I remove them and just use the 10.0.0.0 range, I lose external access to my web server on ports 80 and 443.
Router: billion 7404VGP 172.16.0.1

I would grately welcome any assistance possible in working out what on earth to do next.

Thanks

View the Solution FREE for 30 Days

20091021-EE-VQP-81 / EE_QW_2_20070628

SBS2003, ISA2004

Asked by GillianBeaumontLegal in MS Forefront-ISA, Virtual Private Networking (VPN), SBS Small Business Server

Tags: SBS2003, ISA2004

About this solution