Solved

vpn fails to resolve remote DNS

Posted on 2007-11-15
8
755 Views
Last Modified: 2008-02-01
I have a Windows 2003 server behind a linksys WRVS4400N firewall.  I have the latest firmware update and it allows GRE packets through on port 1723.  I can create a VPN connection just fine to the 2003 server.

However when I try to get any mapped drives, or resolve any hosts, it fails using the remote DNS.
example, to get to the NAS machine, internal users go to \\nas and in this case the only way to get to it is by IP \\192.168.4.20

DNS resolves internally properly, but NSLookup fails when used from the outside.  This is happening on all of the VPN clients I have.  I have setup more than 30 VPN sites and it is only in the last few weeks that this has started happening.  Using LMHosts is not a viable answer.
0
Comment
Question by:AJRenck
  • 3
  • 2
  • 2
  • +1
8 Comments
 
LVL 12

Expert Comment

by:bhnmi
ID: 20289678
how bout if you use the FQDN of the server when doing the lookup? Also, why is editing the host file not an option?
0
 

Author Comment

by:AJRenck
ID: 20289871
too many machines will be using these machines.  In total over 20 sites it is over 1000 computers that will be VPN'ing in.

Yes, if I use the FQDN it would work for the most part I believe.  I will have to double check.
0
 
LVL 29

Expert Comment

by:Michael W
ID: 20289960
Please post your ipconfig /all configuration when you are connected to the remote site via VPN. Perhaps its not picking up the remote DNS server when the IP address is assigned.
0
Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

 
LVL 32

Expert Comment

by:dpk_wal
ID: 20290219
Have you tried adding DNS suffic in the VPN adapter TCP/IP settings; if you are able to ping the remote resources when using FQDN I think with the dns suffix added the things should start rolling.

Thank you.
0
 

Author Comment

by:AJRenck
ID: 20294855
PPP adapter neoptx3:

        Connection-specific DNS Suffix  . : vsi.com
        Description . . . . . . . . . . . : WAN (PPP/SLIP) Interface
        Physical Address. . . . . . . . . : 00-53-45-00-00-00
        Dhcp Enabled. . . . . . . . . . . : No
        IP Address. . . . . . . . . . . . : 192.1.1.160
        Subnet Mask . . . . . . . . . . . : 255.255.255.255
        Default Gateway . . . . . . . . . : 192.1.1.160
        DNS Servers . . . . . . . . . . . : 192.1.1.64
                                            192.1.1.64
        Primary WINS Server . . . . . . . : 192.1.1.64
        Secondary WINS Server . . . . . . : 192.1.1.64

Now I can get to the machine via DNS, but it will not accept a valid user/pass for getting to machines.
0
 
LVL 29

Expert Comment

by:Michael W
ID: 20361236
What is the error that you are getting now -- i.e. what does it say, in detail?
0
 
LVL 12

Accepted Solution

by:
bhnmi earned 500 total points
ID: 20361267
Are you using domain\username syntax?
0
 

Author Comment

by:AJRenck
ID: 20363481
Poor management of the disk array:
They were trying to connect as "administrator" instead of as their own usernames.  I have logged in using the correct usernames now.  BTW, when using nslookup it fails on the lookup but pinging it (with or without FQDN) lets it work.
0

Featured Post

Three Reasons Why Backup is Strategic

Backup is strategic to your business because your data is strategic to your business. Without backup, your business will fail. This white paper explains why it is vital for you to design and immediately execute a backup strategy to protect 100 percent of your data.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

There have been a lot of times when we have seen the need to enter a large number of DNS entries in a forward lookup zone. The standard procedure would be to launch the DNS Manager console, create the Zone and start adding new hosts using the New…
OpenVPN is a great open source VPN server that is capable of providing quick and easy VPN access to your network on the cheap.  By default the software is configured to allow open access to your network.  But what if you want to restrict users to on…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

803 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question