Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

VPN only returning one ping

Posted on 2004-08-26
8
509 Views
Last Modified: 2010-04-11
This is exactly the same issue I'm having. My setup is very similar:

192.168.0.1 - Router (DNS, Internet)
192.168.0.2 - ntserver (DHCP, File Share)
192.168.0.5 - VPN Server (Windows 2000 Box)

I've port forwarded VPN through router to VPN Server.

I can connect via VPN from the Internet and can log onto the network. I get an IP address, for example 192.168.0.233.

When I ping the Router, it works every time.

When I ping the VPN server, it works every time.

When I ping anything else on the network, either via name or IP address, I only ever get 1 returned ping...The very first one, after that I get nothing from the device until I disconnect the VPN session and reconnect (then the cycle starts again).

Additionally, a client on the Internal side of the network can ping the 192.168.0.233 (VPN Client) address, but the same thing happens, it only ever receives one reply, the first one.

Can anyone help?

Thanks,

Marty
0
Comment
Question by:marty_t
  • 4
  • 3
8 Comments
 
LVL 7

Expert Comment

by:EmpKent
ID: 11902275
Is it only ICMP that fails or is there no connectivity whatsoever?

Any entries in the server logs?

0
 
LVL 1

Author Comment

by:marty_t
ID: 11902399
It's everything that fails. Although it's VERY strange that it does return the very first ping, then nothing else.

As I said above, I can ping the router, on it's INTERNAL IP address, so I must be getting to the VPN fine and on the Internal Network.

It's just the machines I don't get a reply from (apart from the first reply).

Just looked in the logs and it saying nothing about RAS, so I'm assuming no errors.
0
 
LVL 7

Expert Comment

by:EmpKent
ID: 11902495
On the Logging tab in the properties of a VPN server in the Routing and Remote Access snap-in, there are four levels of logging. Select Log all events, and then try the connection again. After the connection fails, check the system event log for events logged during the connection process. After you are done viewing remote access events, select the Log errors and warnings option on the Logging tab to conserve system resources.

This is from MS: under the troubleshooting section

http://www.microsoft.com/technet/prodtechnol/windowsserver2003/technologies/networking/vpndeplr.mspx#XSLTsection129121120120

See if it shows anything.
0
Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

 
LVL 1

Author Comment

by:marty_t
ID: 11902830
On your link above, this one seems the only one it could be, how would I do this?

Unable to Reach Locations Beyond the VPN Server

• Verify that either the protocol is enabled for routing or that dial-in clients are allowed to access the entire network for LAN protocols being used by the VPN clients.
 
As far as I'm aware, this was automatic.
0
 
LVL 7

Accepted Solution

by:
EmpKent earned 250 total points
ID: 11903087
I would have thought it would be automatic as well. Never can tell with MS, though. I have not used a Windows box for VPN for 5 years so I am quite rusty. Check here.

http://www.microsoft.com/technet/community/columns/cableguy/cg0601.mspx#XSLTsection124121120120

Kent
0
 
LVL 11

Expert Comment

by:PennGwyn
ID: 11904520
Is your router configured to issue ICMP redirects?  If it is, you might need to turn that off.  Make sure that the VPN server has "proxy ARP" enabled, too.

0
 
LVL 1

Author Comment

by:marty_t
ID: 11906739
Guys,

I have reconfigured my VPN server but unfortunately couldn't test it until monday. I will let you all know how it goes then.

Many thanks for your valuable help.

Marty
0
 
LVL 1

Author Comment

by:marty_t
ID: 11940489
The issue has now been fixed, although I don't know how.

I deleted everything to do with the Routing and Remote Access and set it up again. The information in the accepted answer was of the most help in this case, although not a complete fix, it was contributary.

Many thanks,

Marty
0

Featured Post

Easy, flexible multimedia distribution & control

Coming soon!  Ideal for large-scale A/V applications, ATEN's VM3200 Modular Matrix Switch is an all-in-one solution that simplifies video wall integration. Easily customize display layouts to see what you want, how you want it in 4k.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Data center, now-a-days, is referred as the home of all the advanced technologies. In-fact, most of the businesses are now establishing their entire organizational structure around the IT capabilities.
When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

856 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question