oneswild
asked on
VPN Connectivity Errors
Hello,
I'm running server 2003 standard edition and I'm trying to setup VPN Access. I have several windows xp workstations locally and I can connect on the local network via VPN; however I can't from an outside network. I'm running an AD domain with DNS, DHCP and RRA (VPN) with one network adapter. I've setup users to be able to connect remotely. I 'm running a cable modem behind a linksys wireless router. I have a static address, gateway, subnet, and dns setup on the router from my ISP with port 1723 to forward to my server's local IP. I have DCHP on the router disabled and for testing purposes I've disabled my firewall and gone through some security policies on the server with no success. I keep getting error 678 no answer. I'm sure it's something simple that I'm overlooking. Please help.
Thanks in advance
I'm running server 2003 standard edition and I'm trying to setup VPN Access. I have several windows xp workstations locally and I can connect on the local network via VPN; however I can't from an outside network. I'm running an AD domain with DNS, DHCP and RRA (VPN) with one network adapter. I've setup users to be able to connect remotely. I 'm running a cable modem behind a linksys wireless router. I have a static address, gateway, subnet, and dns setup on the router from my ISP with port 1723 to forward to my server's local IP. I have DCHP on the router disabled and for testing purposes I've disabled my firewall and gone through some security policies on the server with no success. I keep getting error 678 no answer. I'm sure it's something simple that I'm overlooking. Please help.
Thanks in advance
probably a FW somewhere blocking your ipsec traffic.
ASKER
Is there a way I can test for that?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I have access to the router on the server side but not the client's side at the moment. I currently don't have a program that can do a dump/snoop unless it's included with windows. I'm a little confused about ACL's, from what I can see on the server's side of the router the ports are open. For testing purposes to see if I had RRA setup properly I connected locally first without any issues and then disconnected before trying it from a workstation on another network.
Thanks
Thanks
Looking at the server side router, do you see attempts , packet count increasing for the vpn in?
ASKER
Looking at the router on the server side I found that logging was disabled, I have enabled it and I'm going to make another attempt to connect and see what the stats are. It's a cheap WRT54G linksys router.
As long as it works that's all that matters :) let me know what it says.
Jim
Jim
ASKER
Hello Jim,
You where right it was a FW blocking the packets on the clients side router. I was able to connect after making some changes. I'm going to re-enable the FW on my router with VPN passthough enabled and try the connection again. Thanks
You where right it was a FW blocking the packets on the clients side router. I was able to connect after making some changes. I'm going to re-enable the FW on my router with VPN passthough enabled and try the connection again. Thanks
*clap clap*
I deal with that daily, I know your pain :)
Let me know how it plays out.
Jim
I deal with that daily, I know your pain :)
Let me know how it plays out.
Jim
ASKER
Hello Jim,
Looks like I'm up and running. Thanks for your help on this one, it's much appreciated. Have a great day!
Thanks,
Tim
Looks like I'm up and running. Thanks for your help on this one, it's much appreciated. Have a great day!
Thanks,
Tim
Great, glad to hear it, and that I could help.
Tx for the points!
jim
Tx for the points!
jim