?
Solved

Windows 2000 Server Terminal external Connection issue.

Posted on 2006-05-24
16
Medium Priority
?
225 Views
Last Modified: 2010-03-18
I've Terminal Services installed on Windows 2000 Server, everything was fine until this morning. My employees can't log on to our remote server from the remote locations. If they come down to our office they can log in remotely. Apparently, it seems like the problem is with the people connecting to our Terminal Server from external location, but internally it works for everyone.
Here is the error message they all get

The client could not connect to the remote computer
Remote connection might not be enabled or the computer might be to busy to accept new connections.
It also possible that network problems are preventing your connection

All the licenses are valid. Also we have watchguard security as our firewall. Any help will be much appreciated. thanks

0
Comment
Question by:benefitsystems
  • 8
  • 6
15 Comments
 
LVL 12

Expert Comment

by:Craig_200X
ID: 16756009
sounds like a port / firewall issue... doublecheck the watchguard is allowing 3389 (or the port you have configured for ts)

0
 
LVL 1

Author Comment

by:benefitsystems
ID: 16756202
Where do I check for that?
0
 
LVL 1

Author Comment

by:benefitsystems
ID: 16756211
I even rebooted the watchguard. The settings were never changed so I would doubt that it could be the port issue.
0
Get quick recovery of individual SharePoint items

Free tool – Veeam Explorer for Microsoft SharePoint, enables fast, easy restores of SharePoint sites, documents, libraries and lists — all with no agents to manage and no additional licenses to buy.

 
LVL 12

Expert Comment

by:Craig_200X
ID: 16756314
if its working internally theres nothing wrong with the setup internally.. if its not working for EVERYONE externally... its the only common link... the router/firewall.. do you have a seperate router as well and if so is port forwarding enabled there?

otherwise...the best way to do this is open policy manager, create a new service using the + sign called remote desktop connection or terminal service with no space between the words or use _ , then add the new service and under the incoming tab select from any (not secure, static ip's at client would be better and then restrict by ip using these would be the best option) then for the "TO" section select edit press NAT in the from field pick the appropriate external ip if you have more than one and the destination put in the local ip of the server they will be connecting to.  

If you then show all the rule in detail, the rule should read something like xxx.xxx.xxx.xxx (where this is the external ip address) > yyy.yyy.yyy.yyy (where this is the local ip of the server)

Hope this help let me know if you still get stuck.
0
 
LVL 1

Author Comment

by:benefitsystems
ID: 16756332
I am not quite familiar with watchguard? I am trying to check my settings, i'll keep you inform. thanks
0
 
LVL 1

Author Comment

by:benefitsystems
ID: 16756946
Apparently, its not working for me. Also, we don't have a router we use access points.
0
 
LVL 1

Author Comment

by:benefitsystems
ID: 16761297
Never mind. I figured it out. Setting under LAN had gotten change.
0
 
LVL 12

Expert Comment

by:Craig_200X
ID: 16761909
great! for my info what changed?

0
 
LVL 1

Author Comment

by:benefitsystems
ID: 16762133
Sorry, should have mentioned it earlier. Since it's a terminal server the IP address assign to it must be static not the one thats automatically generated, because my firebox watchguard only recognize that static IP.
So, if you go to LAN, right click properties --> TCP/IP-->properties-->advance--> thats where static IP needs to go.
To find out the information that goes there just do ipconfig on the command prompt. Or, use the Firebox security to check the IP for the terminal server.
Hope this helps.
0
 
LVL 1

Author Comment

by:benefitsystems
ID: 16764877
How do I close this question?
0
 
LVL 12

Expert Comment

by:Craig_200X
ID: 16765800
click under support at the top and request to have it closed points refunded since you found the answer.

:)

0
 
LVL 1

Author Comment

by:benefitsystems
ID: 16773940
Thanks for your help man.
0
 
LVL 12

Expert Comment

by:Craig_200X
ID: 16774008
np

glad to help!

0
 
LVL 12

Expert Comment

by:Craig_200X
ID: 16775768
close it.
0
 

Accepted Solution

by:
GranMod earned 0 total points
ID: 16775804
PAQ-ing the question and refunding 500 points

Thanks Craig_200X

GranMod
The Experts Exchange
Community Support Moderator of all Ages
0

Featured Post

[Webinar] Cloud and Mobile-First Strategy

Maybe you’ve fully adopted the cloud since the beginning. Or maybe you started with on-prem resources but are pursuing a “cloud and mobile first” strategy. Getting to that end state has its challenges. Discover how to build out a 100% cloud and mobile IT strategy in this webinar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Nslookup is a command line driven utility supplied as part of most Windows operating systems that can reveal information related to domain names and the Internet Protocol (IP) addresses associated with them. In simple terms, it is a tool that can …
Are you one of those front-line IT Service Desk staff fielding calls, replying to emails, all-the-while working to resolve end-user technological nightmares? I am! That's why I have put together this brief overview of tools and techniques I use in o…
Integration Management Part 2
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…
Suggested Courses

850 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question