Remote Assistance Thru a VPN server to server

My question is:

When I type in the internal ip of the other machine it will not connect.

When i log inot the other server, then offer remote assiatance it works.

We have established a vpn server to server. I can RDP to client machines from my machine at the main office. Why can I not offer remote assitance>  I have enable group policy for remote assitance.

How do I get the ooffer of remote asistance to work thru the vpn to client machines?

Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Jeffrey Kane - TechSoEasyPrincipal ConsultantCommented:
You have to allow it through your own firewall.  Which can be difficult.  I ALWAYS offer remote assistance to users through the server at their site.  It's just a lot easier that way.

MS Guide:

Another good alternative, is to use LogMeIn's IT Reach

The reason its probably not working is the VPN may not be passing traffic on port 135 or UDP traffic(sessmgr/helpsvc).  I do the same as Jeff (TechSoEasy) above stated, I either remote into the server and offer assistance or depending if the client has SMS or a 3rd party app like the one above.
Jeffrey Kane - TechSoEasyPrincipal ConsultantCommented:
I should have stated that --- about port 135, and the truth is you don't really want that port open... it's too dangerous in my opinion.

Acronis True Image 2019 just released!

Create a reliable backup. Make sure you always have dependable copies of your data so you can restore your entire system or individual files.

I agree with Jeff,  You really don't want that port open --- probably one of the most hacked ports.
If these sites are connected via VPN, then all traffic should be allowed within the tunnel between sites.  Now, that being said, where are the VPN endpoints?  Are they outside the firewalls of both sites or do they terminate on the LAN side of each firewall?

danman265Author Commented:
Both of the site have a vpn connected using  pix 501 firewalls. port 3389 is open for traffic.  Ideally, we want our helpdesk to be able to RA directly to the users pc without loggin into the remote servers and doing it that way.  there must be an easy way to do this.  Trusts are setup as well.
Jeffrey Kane - TechSoEasyPrincipal ConsultantCommented:
If that's what you want, then you definitely should look at LogMeIn's Rescue... it's what Microsoft actually uses to remote into machines when they are working with you.


Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows Server 2003

From novice to tech pro — start learning today.