ianmclachlan
asked on
ISA 2004 - W2k3 .....VPN will not work.......at all
Hi Guys,
VPN with Radius authentication
Quick question :
1. When configuring ISA VPN shouldn't RRAS get enabled and configured automatically by ISA. If so, then this is my problem. My RRAS doesn't appear to get enabled/configured. Tried re-installing ISA, even the whole 2003 server due to a corrupt ghost image. Still the same issue.
Have notice a couple of errors in the event log :
a) MSSQL$MSFW Event id 19011 ....something about not enough registry info or use /AUXSOURCE=flag message dll. - (Basically the SQL icon in the task bar is blank ie. no server/configuration details). Thought this was something to do with logging, so have dismissed it as the cause of VPN not working.
b) Got another error about how the NETWORK SERVICE account could not access/write to the HKLM/system/current/servic
Have re-installed, with different combinations(Reg edit then install, enable RRAS then install etc...) with the same results above. Server is 2003 sp1 ISA 2004 sp1
I am positve that I have set it up properly (Radius, remote access policies etc...) In logging, can see the PTPP request coming in and it hitting the correct system rule - lafter a wee while looks as though it timesout and closes the connection. Get 721 no respond at the client after it tries to authenticate the username/password. Have tried basic VPN using RRAS for authentication. Same problem.
Convinced its RRAS.
Anyone any ideas?
Thanks
Ian
VPN with Radius authentication
Quick question :
1. When configuring ISA VPN shouldn't RRAS get enabled and configured automatically by ISA. If so, then this is my problem. My RRAS doesn't appear to get enabled/configured. Tried re-installing ISA, even the whole 2003 server due to a corrupt ghost image. Still the same issue.
Have notice a couple of errors in the event log :
a) MSSQL$MSFW Event id 19011 ....something about not enough registry info or use /AUXSOURCE=flag message dll. - (Basically the SQL icon in the task bar is blank ie. no server/configuration details). Thought this was something to do with logging, so have dismissed it as the cause of VPN not working.
b) Got another error about how the NETWORK SERVICE account could not access/write to the HKLM/system/current/servic
Have re-installed, with different combinations(Reg edit then install, enable RRAS then install etc...) with the same results above. Server is 2003 sp1 ISA 2004 sp1
I am positve that I have set it up properly (Radius, remote access policies etc...) In logging, can see the PTPP request coming in and it hitting the correct system rule - lafter a wee while looks as though it timesout and closes the connection. Get 721 no respond at the client after it tries to authenticate the username/password. Have tried basic VPN using RRAS for authentication. Same problem.
Convinced its RRAS.
Anyone any ideas?
Thanks
Ian
Any update?
ASKER
Hi Keth,
Thanks for your reply.
I have enabled the VPN
The VPN system rule is automatically created when you enable VPN and I have checked its there and confirgured properly VPN Client (external going to internal) etc....
Router allows GRE traffic to pass
Not tried an IPSEC VPN yet, however, what was your thinking about why this would work?
Any help would be appreciated.
Thanks
Ian
Thanks for your reply.
I have enabled the VPN
The VPN system rule is automatically created when you enable VPN and I have checked its there and confirgured properly VPN Client (external going to internal) etc....
Router allows GRE traffic to pass
Not tried an IPSEC VPN yet, however, what was your thinking about why this would work?
Any help would be appreciated.
Thanks
Ian
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Have you created the rules allowing VPN client --> Internal etc?
Are your users getting prompted for a username/password or is the timeout before this point?
Is your external router/firewall allowing GRE traffic to pass?
If you setup an IPSEC VPN instead, does this work OK?