Can't connect more than two clients through SBS VPN--> 736 error

We have an office sever with SBS 2003 and VPN setup. We have no problem connecting two remote XP clients to the network, but when a third tries to connect we get
"TCP/IP CP reported error 736: The remote computer terminated the control protocol."  I know that SBS 2003 will not allow more that two terminal service connections is this
the same for VPN?  If not, how can I get more than two connections?
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

It's acting like there are only 2 vpn ports defined for that protocol in RRAS.  Either that or the assigned IP addresses (whether static or through bridging dhcp) have only 2 available and then cannot create a port for the third.  By default I believe there are like 10 or 11 concurrent connections setup in SBS, but really only half that as half are L2TP and other half are PPTP, of which you are most likely only using one.

Look in RRAS (Routing and Remote Access).  Click on Ports. And see how many PPTP ports you have showing in the list.  If it's more than two or three then right click on the "server name (Local)" and select Properties.  (If it's not more than three then you need add more PPTP ports.

Click on the IP tab and see whether you are using DHCP on the server or static IP's.  If static IP's note how many there are and jot down the IP's listed.  (If you're using static IP's and you added more PPTP ports above then you'll also need to add more static IP addresses to match that number).  Now click on the Logging tab and select "log all events".

If you were using DHCP, Close out those windows and go to your DHCP server.  Open up your main Scope, then Client Leases.  You should see several listings with the little dial up networking symbol icon beside them (with a little phone).  See how many you have, and notate the IP addresses.  If less than the number of ports you had above you need to add more to the dhcp leases.  If not then check those IP addresses and insure that you haven't added static IP's somewhere in the network that overlap that list of dhcp lease addresses.

Finally, have your users attempt to log on to vpn and get the error:

To enable RAS logs run command “netsh ras set tracing * enabled”  (for some reason this is frequently disabled in SBS regardless of what you set in the logging directory)
Now have those 3 users attempt to recreate the error by logging in.
Now immediately dump the RAS logs to disk by typing “netsh ras set tracing * disabled” command.
Check the logs at c:\windows\tracing directory (or your main win directory if different)
Some of the files where you can look to debug the problem are –

Also see the “Event viewer” and see if you can find any by “RemoteAccess” .

Error codes related to RRAS are listed at 

Let us know what you find

Matt Ridings
MSR Consulting

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
DBBurnsINAuthor Commented:
Thanks Matt, all I had to do was change the IP setting from DHCP to Static and it worked.
Cool, probably didn't have enough IP's in your dynamic pool.

Glad it worked,

Matt Ridings
MSR Consulting
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today

From novice to tech pro — start learning today.