Solved

RDP losing session when Cisco VPN client loses connection

Posted on 2007-03-23
8
1,941 Views
Last Modified: 2013-11-21
RDP losing session when Cisco VPN client loses connection
This is the scenario, when users are connected VIA Cisco VPN client to our ASA VPN server and they are using Windows XP Remote Desktop. If the connection dies or disconnects on the VPN side they lose the XP RDP Session.
Say I have my VPN tunnel and RDP connection Established. If I kill the VPN tunnel the RDP session disconnects and logs out the session. Is there any way around this on either end?
0
Comment
Question by:djohnson104
8 Comments
 
LVL 28

Expert Comment

by:batry_boy
Comment Utility
If the user is using the VPN connection as their means of communicating with the machine they are RDP'ing into, then this most definitely will cause them to lose their RDP session.  This is like unplugging your network cable as far as connecting to the RDP machine.  Am I missing something here?
0
 
LVL 2

Author Comment

by:djohnson104
Comment Utility
XP Machine (RDP Client)<--------> VPN Client <======================>VPN Server <--------><XP Machine (RDP Server)

So the RDP works through the VPN tunnel.  Follow?
0
 
LVL 28

Expert Comment

by:batry_boy
Comment Utility
Yep, that's what I thought...so you're saying this is what is happening:

XP Machine (RDP Client)<--------> VPN Client <====|        x          |====>VPN Server <--------><XP Machine (RDP Server)

So, whenever your VPN session is disconnected (for whatever reason), it makes sense that your RDP session would be terminated as well since the RDP traffic is traversing the VPN tunnel for it to work in the first place.

You ask if there is any way around this...you should troubleshoot the cause of your VPN disconnects.  Have you noticed any pattern of consistency with the VPN disconnections?
0
 
LVL 2

Author Comment

by:djohnson104
Comment Utility
No pattern. Some users have crappy connections. For instance i have had a user on for 8 hours with no problems. I have another guy calling me every 2 min with a disconnect. Its either their ISP or something on their network. Maybe there kid is using bittorent and killing their connection. I am not sure but you would think RDP would save a session if the connection Disconnects.
0
What Is Threat Intelligence?

Threat intelligence is often discussed, but rarely understood. Starting with a precise definition, along with clear business goals, is essential.

 
LVL 28

Expert Comment

by:batry_boy
Comment Utility
Windows XP only supports one login session at a time...that session can either be a local user using the workstation or it can be a remote user using RDP.  This is why the local user is logged off when a remote user establishes an RDP session to it.  I don't know if XP works the same as Windows 2K/2K3 server about terminal service sessions, but I know the server OS'es would save the session.  You can test this by simulating the disconnect from an XP RDP session.

As for troubleshooting the VPN connections, what connection protocol are your VPN users using...tcp or udp?  For the users who are having the disconnect problems, have them change over to the other procotol, whichever one they are not currently using.  You'll have to enable IPSEC over TCP on the ASA first if you haven't already.
0
 
LVL 32

Expert Comment

by:rsivanandan
Comment Utility
Also what is the vpn client you are running, from what I remember 4.8 of vpn client version was good.

Also just reset the tcp/ip stack on the problem machine once to save that problems which could happen quite.

Open a command prompt and do this;

netsh int ip reset reset.log
netsh winsock reset

then REBOOT.

Cheers,
Rajesh
0
 

Accepted Solution

by:
bawzeus earned 125 total points
Comment Utility
Ok when you disconnect froma vpn client you are loosing all of the routing and ip addressing from the network you are connecting from whis will make you loose your connection to the server you are accessing with rdp. Why are you loosing connection to the vpn is it timing out or is someone disconneting on purpose. What you can do is ask the active directory administrator on the VPN server side to not limit the timeout on the session you are using so it will not disconnect. You also need to setup your vpn device not to time out as well so the device does not auto disconnect.
0
 
LVL 2

Author Comment

by:djohnson104
Comment Utility
Bawzeus, let me look in to those options.
0

Featured Post

Find Ransomware Secrets With All-Source Analysis

Ransomware has become a major concern for organizations; its prevalence has grown due to past successes achieved by threat actors. While each ransomware variant is different, we’ve seen some common tactics and trends used among the authors of the malware.

Join & Write a Comment

Remote Apps is a feature in server 2008 which allows users to run applications off Remote Desktop Servers without having to log into them to run the applications.  The user can either have a desktop shortcut installed or go through the web portal to…
Know what services you can and cannot, should and should not combine on your server.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now