bluescreen02
asked on
VPN to my work place is not working.
Windows 2003 and windows XP.
Windows 2003 pppoe connection to my dsl isp.
I created a vpn connection to my work place, i connect i got my work place ip address, subnet, dns, etc the problem that i encounter is that i can not connect to my pc at my work place (vnc) i can ping ip address of the dns server using ip address but i can not ping with names.
Does this sound like a dns problem? Do i need to add routes?
When i first ping with a name it give me time out but the ip address shows my dsl isp address.
the second thing that i did is i use my home pc using a modem i connect to the internet created a vpn connection to my work place i got my work place ip address, dns, subnet, etc, i can connect to my pc with no problems.
why wouldn't it work with the windows 2003 pppoe dsl connection?
Windows 2003 pppoe connection to my dsl isp.
I created a vpn connection to my work place, i connect i got my work place ip address, subnet, dns, etc the problem that i encounter is that i can not connect to my pc at my work place (vnc) i can ping ip address of the dns server using ip address but i can not ping with names.
Does this sound like a dns problem? Do i need to add routes?
When i first ping with a name it give me time out but the ip address shows my dsl isp address.
the second thing that i did is i use my home pc using a modem i connect to the internet created a vpn connection to my work place i got my work place ip address, dns, subnet, etc, i can connect to my pc with no problems.
why wouldn't it work with the windows 2003 pppoe dsl connection?
IanTh
it sounds to me like your work vpn is not forwading dns
Name resolution over VPN's is a very common problem. Following suggestions will give you some options to consider:
You can resolve this in several ways:
1) Use the IP address (of the computer you are connecting to) when connecting to devices such as; \\123.123.123.123\ShareNam
Net Use U: \\123.123.123.123\ShareNam
2) An option is to use the LMHosts file which creates a table of IP's and computer names. LMHosts is located in the Windows directory under c:\Windows (or WINNT)\System32\Drivers\Et
192.168.0.101 CompName #PRE
Hit enter when each line is complete (important), then save the file without a file extension. To be sure there is no extension ,when saving enclose in quotations like "LMHosts". Now when you try to connect to a computer name it should find it as it will search the LMHosts file for the record before connecting.
More details regarding LMHosts file:
http://www.microsoft.com/technet/prodtechnol/windows2000serv/reskit/cnet/cnfd_lmh_qxqq.mspx?mfr=true
The drawback of the LMHosts file is you have to maintain a static list of computernames and IP addresses. Also if the remote end uses DHCP assigned IP's it is not a feasible option. Thus in order to be able to use computer names dynamically try to enable with some of the following options:
3) if you have a WINS server add that to the network cards configuration
4) also under the WINS configuration on the network adapter make sure NetBIOS over TCP/IP is selected
5) try adding the remote DNS server to your local DNS servers in your network card's TCP/IP configuration
6) verify your router does not have a "block NetBIOS broadcast" option enabled
7) test if you can connect with the full computer and domain name as \\ComputerName.domain.loca
You can resolve this in several ways:
1) Use the IP address (of the computer you are connecting to) when connecting to devices such as; \\123.123.123.123\ShareNam
Net Use U: \\123.123.123.123\ShareNam
2) An option is to use the LMHosts file which creates a table of IP's and computer names. LMHosts is located in the Windows directory under c:\Windows (or WINNT)\System32\Drivers\Et
192.168.0.101 CompName #PRE
Hit enter when each line is complete (important), then save the file without a file extension. To be sure there is no extension ,when saving enclose in quotations like "LMHosts". Now when you try to connect to a computer name it should find it as it will search the LMHosts file for the record before connecting.
More details regarding LMHosts file:
http://www.microsoft.com/technet/prodtechnol/windows2000serv/reskit/cnet/cnfd_lmh_qxqq.mspx?mfr=true
The drawback of the LMHosts file is you have to maintain a static list of computernames and IP addresses. Also if the remote end uses DHCP assigned IP's it is not a feasible option. Thus in order to be able to use computer names dynamically try to enable with some of the following options:
3) if you have a WINS server add that to the network cards configuration
4) also under the WINS configuration on the network adapter make sure NetBIOS over TCP/IP is selected
5) try adding the remote DNS server to your local DNS servers in your network card's TCP/IP configuration
6) verify your router does not have a "block NetBIOS broadcast" option enabled
7) test if you can connect with the full computer and domain name as \\ComputerName.domain.loca
Add your companies dns and wins servers to your vpn connection in the advance settings
this should resolve your problem
also see if you can telnet to the port
cmd
telnet 192.168.2.12 5900
this should resolve your problem
also see if you can telnet to the port
cmd
telnet 192.168.2.12 5900
ASKER
it didn't work...
i am inside my LAN and when i connect using the VPN and ran ipconfig /all i see my LAN ip addres, subnet, DG, DNS, ( NO wins) and also my work place ip address, subnet, DG, DNS, wins, DNS, etc.
When i use a dial up on my laptop i connect to my ISP and then use VPN to my work palce everything works, why it works using a dial up and not when i am inside my LAN.
i am inside my LAN and when i connect using the VPN and ran ipconfig /all i see my LAN ip addres, subnet, DG, DNS, ( NO wins) and also my work place ip address, subnet, DG, DNS, wins, DNS, etc.
When i use a dial up on my laptop i connect to my ISP and then use VPN to my work palce everything works, why it works using a dial up and not when i am inside my LAN.
>>"i am inside my LAN and when i connect using the VPN "
If you are connecting to the external/public IP it shouldn't work at all. You have to connect from outside the LAN. Using DIAL-up would achieve that.
If you are connecting to the external/public IP it shouldn't work at all. You have to connect from outside the LAN. Using DIAL-up would achieve that.
ASKER
my server is connected to the internet, even my server when i connect using vpn to my work place i can not connect to my work place pc but i got the ip address, wins, dns, etc. of my work place.
My server uses pppoe to connect to the isp.
My server uses pppoe to connect to the isp.
-Make sue that the subnet you are using at the office and at the remote site are not the same. For example if the office uses 192.168.1.x then the remote site must use something different like 192.168.2.x
-Also verify that the devices you are pinging do not have a software firewall enabled such as the Windows, One Care, Symantec, Etc
-Can you ping an IP, rather than a name
-Are there multiple routers or a modem that is a combined modem and router as well as a separate router at either site ?
-Also verify that the devices you are pinging do not have a software firewall enabled such as the Windows, One Care, Symantec, Etc
-Can you ping an IP, rather than a name
-Are there multiple routers or a modem that is a combined modem and router as well as a separate router at either site ?
ASKER
actually the only difference is when i connect using ppoe my server and my client pc's inside my lan will not ping or connect to my work place pc's through vpn, my server first connect to my isp.
My laptop on the other hand works, i use dial up i connect to my isp i create a vpn i connect to my work place and i am able to ping and connect to other pc's.
Why would a dial up work and not the pppoe connection?
pppoe is my dsl line.
My laptop on the other hand works, i use dial up i connect to my isp i create a vpn i connect to my work place and i am able to ping and connect to other pc's.
Why would a dial up work and not the pppoe connection?
pppoe is my dsl line.
ASKER
When i connect vpn from from pc inside my lan and ran ipconfig /all
i see my own ip address and the vpn ip address.
strange when i try to ping my work place pc (ping mypc) it shows the ip address of my server connected to my pppoe isp
it shows like this ping mypc(trying to ping my work place pc) (my work place ip address is 10.174.x.x)
I should get a result ip address of my work place such as 10.174.x.x instead of below.
pinging mypc.domain.com 202.123.1.1<(my server's ip address connected to my isp)
look above why is my isp showing my domain.com and my server's ip address?
i see my own ip address and the vpn ip address.
strange when i try to ping my work place pc (ping mypc) it shows the ip address of my server connected to my pppoe isp
it shows like this ping mypc(trying to ping my work place pc) (my work place ip address is 10.174.x.x)
I should get a result ip address of my work place such as 10.174.x.x instead of below.
pinging mypc.domain.com 202.123.1.1<(my server's ip address connected to my isp)
look above why is my isp showing my domain.com and my server's ip address?
Could you connect to the Internet, and do not use the dial-up connection. Then connect the VPN and run ipconfig /all Once complete please post the results here.
ASKER
Okay thanks for your reply...
below is the ipconfig /all on my server, 2 adapters and the PPPOE
Microsoft Windows [Version 5.2.3790]
(C) Copyright 1985-2003 Microsoft Corp.
C:\Documents and Settings\Administrator>ipc
Windows IP Configuration
Host Name . . . . . . . . . . . . : server
Primary Dns Suffix . . . . . . . : Domain.com
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : Yes
WINS Proxy Enabled. . . . . . . . : Yes
DNS Suffix Search List. . . . . . : Domain.com
Ethernet adapter Inside-LAN:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : NETGEAR GA311 Gigabit Adapter
Physical Address. . . . . . . . . : 00-0F-B5-F9-1F-29
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.0.1
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . :
DNS Servers . . . . . . . . . . . : 192.168.0.1
Ethernet adapter Public-LAN:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : IBM Netfinity 10/100 Ethernet Security Ad
apter 2
Physical Address. . . . . . . . . : 00-02-55-AA-E5-1E
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.1.69
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . :
NetBIOS over Tcpip. . . . . . . . : Disabled
PPP adapter To The Inernet:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : WAN (PPP/SLIP) Interface
Physical Address. . . . . . . . . : 00-53-45-00-00-00
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 202.123.155.1
Subnet Mask . . . . . . . . . . . : 255.255.255.255
Default Gateway . . . . . . . . . : 0.0.0.0
DNS Servers . . . . . . . . . . . : 205.230.132.2
205.230.132.3
NetBIOS over Tcpip. . . . . . . . : Disabled
C:\Documents and Settings\Administrator>
Below is the pc inside the LAN using vpn to my work place, this is the part that will not work once connected through vpn to my work place i can't ping any pc's at my work place.
Microsoft Windows [Version 5.2.3790]
(C) Copyright 1985-2003 Microsoft Corp.
C:\Documents and Settings\Administrator>ipc
Windows IP Configuration
Host Name . . . . . . . . . . . . : Server2
Primary Dns Suffix . . . . . . . : Domain.com
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : Domain.com
Ethernet adapter Local Area Connection 2:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel 21140-Based PCI Fast Ethernet Adapt
er (Generic)
Physical Address. . . . . . . . . : 00-03-FF-A4-E5-1E
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IP Address. . . . . . . . . . . . : 192.168.0.3
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DNS Servers . . . . . . . . . . . : 192.168.0.1
Lease Obtained. . . . . . . . . . : Wednesday, January 31, 2007 6:20:49 PM
Lease Expires . . . . . . . . . . : Thursday, February 08, 2007 6:20:49 PM
PPP adapter VPN-To-Work:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : WAN (PPP/SLIP) Interface
Physical Address. . . . . . . . . : 00-53-45-00-00-00
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 10.174.12.11
Subnet Mask . . . . . . . . . . . : 255.255.255.255
Default Gateway . . . . . . . . . : 10.174.12.11
DNS Servers . . . . . . . . . . . : 10.174.10.11
10.174.10.190
NetBIOS over Tcpip. . . . . . . . : Disabled
C:\Documents and Settings\Administrator>
Here is the result when i try to ping a pc at my work place below.
C:\Documents and Settings\Administrator>pin
Pinging gumtss0407.Domain.com [202.123.155.1] with 32 bytes of data:<<<<<<(this shows my Domain and the pppoe adapter ip addrress) this is not right...
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Ping statistics for 202.123.155.1: <<<<<<<(this is the IP address of my pppoe adapter) this is not right.
Packets: Sent = 4, Received = 0, Lost = 4 (100% loss),
C:\Documents and Settings\Administrator>
below is the ipconfig /all on my server, 2 adapters and the PPPOE
Microsoft Windows [Version 5.2.3790]
(C) Copyright 1985-2003 Microsoft Corp.
C:\Documents and Settings\Administrator>ipc
Windows IP Configuration
Host Name . . . . . . . . . . . . : server
Primary Dns Suffix . . . . . . . : Domain.com
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : Yes
WINS Proxy Enabled. . . . . . . . : Yes
DNS Suffix Search List. . . . . . : Domain.com
Ethernet adapter Inside-LAN:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : NETGEAR GA311 Gigabit Adapter
Physical Address. . . . . . . . . : 00-0F-B5-F9-1F-29
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.0.1
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . :
DNS Servers . . . . . . . . . . . : 192.168.0.1
Ethernet adapter Public-LAN:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : IBM Netfinity 10/100 Ethernet Security Ad
apter 2
Physical Address. . . . . . . . . : 00-02-55-AA-E5-1E
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.1.69
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . :
NetBIOS over Tcpip. . . . . . . . : Disabled
PPP adapter To The Inernet:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : WAN (PPP/SLIP) Interface
Physical Address. . . . . . . . . : 00-53-45-00-00-00
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 202.123.155.1
Subnet Mask . . . . . . . . . . . : 255.255.255.255
Default Gateway . . . . . . . . . : 0.0.0.0
DNS Servers . . . . . . . . . . . : 205.230.132.2
205.230.132.3
NetBIOS over Tcpip. . . . . . . . : Disabled
C:\Documents and Settings\Administrator>
Below is the pc inside the LAN using vpn to my work place, this is the part that will not work once connected through vpn to my work place i can't ping any pc's at my work place.
Microsoft Windows [Version 5.2.3790]
(C) Copyright 1985-2003 Microsoft Corp.
C:\Documents and Settings\Administrator>ipc
Windows IP Configuration
Host Name . . . . . . . . . . . . : Server2
Primary Dns Suffix . . . . . . . : Domain.com
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : Domain.com
Ethernet adapter Local Area Connection 2:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel 21140-Based PCI Fast Ethernet Adapt
er (Generic)
Physical Address. . . . . . . . . : 00-03-FF-A4-E5-1E
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IP Address. . . . . . . . . . . . : 192.168.0.3
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DNS Servers . . . . . . . . . . . : 192.168.0.1
Lease Obtained. . . . . . . . . . : Wednesday, January 31, 2007 6:20:49 PM
Lease Expires . . . . . . . . . . : Thursday, February 08, 2007 6:20:49 PM
PPP adapter VPN-To-Work:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : WAN (PPP/SLIP) Interface
Physical Address. . . . . . . . . : 00-53-45-00-00-00
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 10.174.12.11
Subnet Mask . . . . . . . . . . . : 255.255.255.255
Default Gateway . . . . . . . . . : 10.174.12.11
DNS Servers . . . . . . . . . . . : 10.174.10.11
10.174.10.190
NetBIOS over Tcpip. . . . . . . . : Disabled
C:\Documents and Settings\Administrator>
Here is the result when i try to ping a pc at my work place below.
C:\Documents and Settings\Administrator>pin
Pinging gumtss0407.Domain.com [202.123.155.1] with 32 bytes of data:<<<<<<(this shows my Domain and the pppoe adapter ip addrress) this is not right...
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Ping statistics for 202.123.155.1: <<<<<<<(this is the IP address of my pppoe adapter) this is not right.
Packets: Sent = 4, Received = 0, Lost = 4 (100% loss),
C:\Documents and Settings\Administrator>
Is there any chance you have a router at the corporate site that is a PPTP VPN server as well as your Windows VPN server? I wonder when using DSL if it is trying to connect to that. If improperly configured it would also explain why the 202.x.x.x addresses.
ASKER
could be mis configured but don't know where?
IF i connect to my isp using my pppoe and vpn to my work place can't connect, but i can with a dial up don't make any sense, i can't seem to figure it out...
IF i connect to my isp using my pppoe and vpn to my work place can't connect, but i can with a dial up don't make any sense, i can't seem to figure it out...
>>"could be mis configured but don't know where?"
What make and model is the router at the 2003 server site?
What make and model is the router at the 2003 server site?
ASKER
no router, i'm using ISA 2004 and all out bound allowed.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Thanks bluescreen02,
--Rob
--Rob