Solved

Problem using VPN connection

Posted on 2007-11-30
8
160 Views
Last Modified: 2010-04-19
I have one SBS 2003 in one lan, and in another office connected with a permanent VPN connection by routers (DSL), with all ports and services open inside the private lan to test.

When I try to login with one user account in the main office works fine, but when I try to login the same user account in the second office, the user can logged but some policies (Like hide last user) don't apply, and sometimes go too slowly (But only sometimes, without any relation with the bandwith usage).

Anybody can help me?
0
Comment
Question by:lnrivera
  • 4
  • 4
8 Comments
 
LVL 51

Expert Comment

by:Netman66
ID: 20386741
If Group Policy detects a slow link, then some policies do not apply - this is normal.

To see if the Group Policy client-side extension has determined it's a slow link simply issue the command "gpresult" from a CMD prompt.  Near the top of the outcome it will state whether it thinks the link is slow.

0
 

Author Comment

by:lnrivera
ID: 20387338
Thanks, I try, and I think that this is my problem then, how can I fix it? How can I change this "timeout" parameter?

0
 
LVL 51

Accepted Solution

by:
Netman66 earned 500 total points
ID: 20388063
There is a setting in Group Policy for slow link detection - BUT - we normally don't change this because it causes link saturation if you don't have enough pipe to support dragging policies across it.

How much bandwidth do you have to the site in question?
0
 

Author Comment

by:lnrivera
ID: 20389419
I have 2 mbps, and I found one problem in the log of the computer client "error 1054 from userenv"

"Windows cannot obtain the domain controller name for your computer network. (An unexpected network error occurred. ). Group Policy processing aborted.

It's the origin of the problem?
0
How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

 
LVL 51

Expert Comment

by:Netman66
ID: 20393170
It certainly could be an indication of the problem, yes.

A few things you want to check are:

1)  The DNS settings on the workstation.  They should ONLY point to your local DNS server.  This local DNS server should then Forward to the ISP.
2)  Your NICs are set to Auto as well as your switches.  Sometimes forcing a link speed causes some weird things to manifest.
3)  Your patch cable from the computer to the wall.
4)  The cable runs themselves - sometimes EMI causes issues with data transfer on CAT5/6 if it's too close to electrical devices - especially, the flourescent lights!

Let us know what you find.
0
 

Author Comment

by:lnrivera
ID: 20395022
I check all of this, with the same results
0
 

Author Comment

by:lnrivera
ID: 20395072
The LANs are in different segments, It's necessary to configure sometihng in the DNS panel of the SBS 2003? (Like add zone or similar?)

Thanks
0
 
LVL 51

Expert Comment

by:Netman66
ID: 20396352
Yes, you would need to configure Sites in AD Sites and Services if your other site contains a DC.

I don't recall reading that there is one.  If you only have client workstations, then there is no need to configure sites.

How are the remote clients getting their IP addresses?  What is their DNS settings.

0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

You may have discovered the 'Compatibility View Settings' workaround for making your SBS 2008 Remote Web Workplace 'connect to a computer' section stops 'working around' after a Windows 10 client upgrade.  That can be fixed so it 'works around' agai…
ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

758 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now