Windows Server 2003 Server RDP

AndyCam
AndyCam used Ask the Experts™
on
I have created a server, running Windows Server 2003 Enterprise which is running VMWARE. This is runnig on a desktop computer with 8 GB RAM, and is used primarily as a development server.
I am having issues as when I go to RDP in, sometimes it works; others it doesn't.

If I restart the server manually, it 'generally' works, but not always. Also sometimes just logging in on the computer itself it then works via RDP.

It all seems very random.

Is there anything I can look at? or monitor?
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®

Commented:
Do another types of connectivity (i.e. http or just ping) to this server work properly during RDP outages?

Author

Commented:
No this is a server we want to host some VM's, which then we launch on it, and use the host as a jump box.

As this is a development server, we only have RDP open, everything else is locked down on the firewall.

Commented:
Well, for first, everytime the RDP fails, the server is still online?
Have a look on your Network connection, what type of connection are you using on VMWARE?
Do you have a DHCP server running on your network?

Sorry for the questions, but best way to help you, is knowing what you have.
Ensure you’re charging the right price for your IT

Do you wonder if your IT business is truly profitable or if you should raise your prices? Learn how to calculate your overhead burden using our free interactive tool and use it to determine the right price for your IT services. Start calculating Now!

Commented:
Try to open something else... Just to check it's server side problem related to RDP or something with connectivity.

Author

Commented:
I have opened a few ports so that I can go straight through the host to the VM
Ie, 192.168.1.1:280.

At the moment the server is on a desk by us, we are looking at moving it, but want this to be working first, and because of this can confirm it is online.
The issues with the RDP is just on the actual host server, but within the VMWare it is standard NAT.
We do have DHCP, but this is a static IP address.


Commented:
First, change the interface from nat to Bridge. Let me know what you got afterwards.

Commented:
There was a discrepancy in 2003 Service pack 2 that would change the port of listening for Terminal Services and RDP.

http://www.experts-exchange.com/OS/Microsoft_Operating_Systems/Server/Remote_Desktop-Terminal_Services/Q_23577994.html

http://www.experts-exchange.com/OS/Microsoft_Operating_Systems/Q_23480710.html

Since you are looking at intermittent communications, It could very well be a DNS issue, just noticed on Terminal services. Do you see other intermittent communications issues, like logging onto a domain, or accessing your mail servers??? If so, concentrate on figuring out if DNS is the problem child and if Terminal services is just a symptom of the problem.

Author

Commented:
It is not using a standard DNS, as its in its own DMZ. I remote on via ip, and same thing in host machine to get to VMS.

I tried changing the network interface to Bridged but this meant I couldn't login.

Commented:
What version of RDP client is being used, 6.1?

http://support.microsoft.com/kb/951616

Commented:
Not using your Top Level Domain Controller for DNS may be the problem. The TDC DNS service will be the only place that holds your SRV records. SRV records are SeRVice records that point the way to your Domain Authentication server for authenitcation. Since the computer you are trying to remote into is not going to see these SRV records, you will probably get an access denied error.

The first thing I would do is make sure I can run a NSlookup to this computer you are trying to remote into. That will verify that DNS is able to reach this computer that is within your DMZ.

If you can get a DNS query resolved to this server, you may have to set up LOCAL credentials for remoting into it. Then, each time you remote into this server, you use the LOCAL credentials to authenticate with instead of domain credentials.

NOTE*** for IT security reasons, use VERY strong Encrypted passwords for any kind of remote access on a DMZ computer.

Author

Commented:
It seems that if we log onto the server directly, and "Repair" the connection every morning it starts to work after that.

Any ideas?

Commented:
Have you looked into what port TS is on. Once again SP2 was problematic on what port Terminal services were looking on. This is actually a very common error:

http://www.experts-exchange.com/OS/Microsoft_Operating_Systems/Q_23480710.html
Commented:
Question PAQ'd, 500 points refunded, and stored in the solution database.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial