Can't connect to Terminal Server over VPN from Windows 2000 clients, Only XP Professional

Posted on 2004-09-27
Last Modified: 2010-04-14
We have 2 servers. One is the PDC running SBS 2000 Server and the 2nd is a BDC setup as a VPN/Terminal Server.

The VPN server has only one network card and we are passing port 1723 through a 3com Officeconnect Firewall to the internal IP address of the VPN server.

Any remote client CAN successfully connect and authenticate to the VPN Server regardless of OS.

The problem is that only XP Professional remote pc's can connect to the VPN/TS via it's internal ip address. Windows 2000 Professional clients cannot connect to the Terminal Server and also cannot ping it by IP address.

Since Terminal Services and VPN Services are setup properly, what is different between Win 2000 Pro and XP Pro which is preventing some clients from hitting the TS.

I have tried 2 different Win 2000 Pro clients on different remote networks and neither can ping the TS while an XP Pro client on the same remote network has no problem whatsoever. I have setup all pc's to use the default gateway setting in the VPN client.
Question by:amkbailey
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
  • 2

Expert Comment

ID: 12162977
Before we try troubleshooting, how many remote clients are at this particular site?
LVL 14

Accepted Solution

dlwyatt82 earned 250 total points
ID: 12163007
I answered a question very similar to this a month or so ago... the problem turned out to be that on both sides of the VPN (in the office and on the home network), the connections were going through a cable router, and the cable routers were both set up to use the same private subnet address (192.168.1.*).

Is this how you have your network set up by any chance? If so, change the subnet you're using on one side or the other of the VPN so they're not identical anymore, and your routing problems will clear up.

Author Comment

ID: 12163030
There will be 4 remote sites with about 5 pc's at each site.

Corporate has about 20 pc's.

Back Up Your Microsoft Windows Server®

Back up all your Microsoft Windows Server – on-premises, in remote locations, in private and hybrid clouds. Your entire Windows Server will be backed up in one easy step with patented, block-level disk imaging. We achieve RTOs (recovery time objectives) as low as 15 seconds.


Author Comment

ID: 12163040
Yes all remote sites have the same subnet address as corporate but what is odd is that XP Pro handles the routing fine.

Is this an improvement in XP that allows it to work properly versus Win 2000 Professional?
LVL 14

Expert Comment

ID: 12163254
No, it's just a slight difference in which network adapter gets listed in the routing tables for your 192.168.1. whatever subnet. You'll find that on the XP systems, you can't ping anything LOCAL while you're connected to the VPN... you can only connect to systems on the remote network. Windows 2000 does the opposite, but neither can really be considered a "bug" or "improvement" since it's a faulty IP network design that is the root of the problem.

Expert Comment

ID: 12163276
If feasible you may want  to look at having each remote being a Lan-Lan connection instead of Client to lan.  That way you only have to worry about one connection from each remote, instead of 30 clients.

You may want to consider setting up seperate IP segments for each remote site to help the segmentation of your network for easier admin.

Featured Post

Comparison of Amazon Drive, Google Drive, OneDrive

What is Best for Backup: Amazon Drive, Google Drive or MS OneDrive? In this free whitepaper we look at their performance, pricing, and platform availability to help you decide which cloud drive is right for your situation. Download and read the results of our testing for free!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
Sometimes clients can lose connectivity with the Lotus Notes Domino Server, but there's not always an obvious answer as to why it happens.   Read this article to follow one of the first experiences I had with Lotus Notes on a client's machine, my…
In this video we outline the Physical Segments view of NetCrunch network monitor. By following this brief how-to video, you will be able to learn how NetCrunch visualizes your network, how granular is the information collected, as well as where to f…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor ( Top Charts is a view in which you can set seve…

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question