Solved

RRAS Internal Interface Not Available / Non-Operational

Posted on 2009-05-10
14
3,085 Views
Last Modified: 2012-08-14
I have a Isa 2006 Enterprise Edition instaled on Windows 2003 Sp1, with RRAS instaled.

At this moment i have all VPN´s down because the RRAS is with internal network unavailable and the user can´t authenticated with the DC´s.
And i don´t know why this hapens no core changes or configurations was made.
Anybody can point some directions to solve this problem.
The cache is also unavailable on this server.

Regards
0
Comment
Question by:David Paris Vicente
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 8
  • 4
14 Comments
 
LVL 51

Expert Comment

by:Netman66
ID: 24357754
For starters, you use either RRAS or ISA - not both.

ISA installs competely locked down, so you'll need to setup some rules and publish the VPN server so that the external interface can route VPN requests to the server.

Check this site:  www.isaserver.org for tutorials and articles on how to set this up.

0
 
LVL 12

Author Comment

by:David Paris Vicente
ID: 24362396
Thats odd because i have the isa servers with RRAS installed on both server´s and the both work well, until now.
0
 
LVL 12

Author Comment

by:David Paris Vicente
ID: 24368348
Wright now i have the isa services up except the remote access service, because if this service is up the vpn user´s receive a message of windows authentication failure.
And on the routing and remote access server the ip routing > general view my internal interface still have the operational status of non operational and ip not available.
Hope this help some body to point me on some directions.
Thank you
0
How to Defend Against the WCry Ransomware Attack

On May 12, 2017, an extremely virulent ransomware variant named WCry 2.0 began to infect organizations. Within several hours, over 75,000 victims were reported in 90+ countries. Learn more from our research team about this threat & how to protect your organization!

 
LVL 51

Expert Comment

by:Netman66
ID: 24370638
In ISA, you need to make sure the networks are correctly configured as external, internal and localhost - then apply the proper trust to each.  Access rules and server publishing will be necessary to get everything talking.

You can use ISA's monitoring to see what is being blocked and why.

0
 
LVL 12

Author Comment

by:David Paris Vicente
ID: 24383373
Thank you Netman for your help, everything has the proper trust.
The one thing that is not working well is VPN access thru my isa02 and i believe the problem is on my rras server, i already try to everything and search on internet for the resolution and nothing.
When the user´s access to the vpn thru isa01 (this work fine) they gain a ip adress  from the range address define on the static address pool on ras server.
The only difference between this two is the status of internal interface define on ip routing - > General of the RRAS server
I will attach a file with my RRas print screen of my ras server on ISA01 and ISA02 for your appreciation.
 

ISA01.bmp
ISA02.bmp
0
 
LVL 51

Expert Comment

by:Netman66
ID: 24383474
Is there a link light on that NIC?  Could there be an issue with the switch port it's attached to or maybe even the patch cable?

Can you give me an IPCONFIG /all from Server 2?

0
 
LVL 12

Author Comment

by:David Paris Vicente
ID: 24383679
Do you need to see the IP´s config?
The diference between IPCONFIG /all from 01 and 02 is on 01 i have PPPadapter RAS server (Dial In) Interface and on 02 i dont.
0
 
LVL 12

Author Comment

by:David Paris Vicente
ID: 24387315
If i force the VPN connection to with RRAS server on ISA02 i receive an error message with the code 691 you don´t have permissions to dial in.
But if i go with RRAS server Isa01 i succeed with no error´s.
All my VPN user´s have permissions to dial in maybe my ISA02 are denied something, anu sugestions?.
0
 
LVL 12

Author Comment

by:David Paris Vicente
ID: 24387344
On my RRAS Server in ISA 01 have remote policies on the RRAS Server in ISA02 dont.
Why they disappear?
0
 
LVL 51

Expert Comment

by:Netman66
ID: 24387375
No idea.

0
 
LVL 12

Author Comment

by:David Paris Vicente
ID: 24388373
When i try to create the policies RRAS give me unspecified error when i finish the rule.
0
 
LVL 12

Accepted Solution

by:
David Paris Vicente earned 0 total points
ID: 24394174
Problem solved.
Thanks for your help netman.
The solution was copy IAS.mdb
0

Featured Post

Ransomware - Can it be prevented?

Worried about ransomware attacks hitting your organization?  The good news is that these attacks are predicable and therefore preventable. Learn more about how you can  stop a ransomware attacks before encryption takes place with WatchGuard Total Security!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

There are several problems reported according slow link speeds or poor performance in TMG 2010, UAG 2010 or ISA 2006. I want to collect here some of the common issues together to give a brief overview what can be the reason. Nevertheless, not all of…
Learn about cloud computing and its benefits for small business owners.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

738 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question