[Webinar] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

VPN issues SBS 08

Posted on 2010-01-04
9
Medium Priority
?
475 Views
Last Modified: 2012-05-08
I have SBS 2008 and I used the SBS Console to configure VPN. I can VPN in from the location I was at when the VPN was setup (home). I thought VPN was setup correclty as I can VPN in all day everyday from home, but no other location. I believe this has something to do with what IP addresses can connect. Does this sound right? And if so, how can I configure it to allow other IP addresses? Every other location I am using the same IP address and login credentials. Any ideas?? thanks.
0
Comment
Question by:level9tech
  • 5
  • 4
9 Comments
 
LVL 78

Accepted Solution

by:
Rob Williams earned 2000 total points
ID: 26172994
The primary restriction is the subnet used locally at the remote site MUST be different from that od the server site. If both sites for example use 192.168.1.x you will not be able to work. Therefore if your server uses a very common subnet such as 192.168.1.x you will find you cannot work from many locations as people tend to choose defaults.
0
 

Author Comment

by:level9tech
ID: 26173152
Nope we setup the server on the 192.168.12.x network so we could VPN from the 192.168.10, and 192.168.1 network
0
 
LVL 78

Assisted Solution

by:Rob Williams
Rob Williams earned 2000 total points
ID: 26173304
It is possible to create a "remote access policy" that will block remote IP's but it has to be manually configured and involves numerous steps. That would not be configured unless someone did so intentionally.
It is also possible to create restrictions on the router, but I am doubtful of that as well.

Is the working remote machine domain joined?
It is possible there is also only one PPTP port opened, though it should be 5 by default.   To check open the Routing and Remote Access Console | expand the server name | click on ports | in the right hand window it will show all the ports. To adjust right click in the white space and choose properties | then highlight PPTP and click configure to increase.

Also did you manually configure the VPN client or copy the install file from the SBS C:\Users\Public\Public Downloads
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 

Author Comment

by:level9tech
ID: 26173563
-Remote machine isnt on the domain.
-Multiple PPTP prots open.
-Manually configured the VPN client. The only thing I see in C:\users\public\public downloads is certificate stuff.

0
 
LVL 78

Assisted Solution

by:Rob Williams
Rob Williams earned 2000 total points
ID: 26177093
Sorry, you are correct there is only a certificate installer there, the Connection Manager was removed with SBS 2008.

Very odd.
You said you are using the same user credentials from different sites. Just to confirm, that is true? Users do need to be granted permissions.

When the connection fails, what error # is displayed, such as 800, 691, 721?
0
 

Author Comment

by:level9tech
ID: 26180925
Error 619- A connection to the remote computer could not be established, so the port used for this connection was closed.

I am using the same creditionals from my home as other locations. I tested VPN from an office computer inside the office with no issues. Just whenever I try from anywhere other then my home I get that error.
0
 
LVL 78

Assisted Solution

by:Rob Williams
Rob Williams earned 2000 total points
ID: 26186137
Any chance the ISP for the problematic sites is SBC?
0
 

Author Comment

by:level9tech
ID: 26190424
No, they have a T1 Line. We ran windows updates and rebooted server and now we have no issues connecting. Not sure what the issue was but its resolved now. Thanks.
0
 
LVL 78

Expert Comment

by:Rob Williams
ID: 26190686
Thanks level9tech. Good to hear it was resolved. It's possible some part of RRAS was locked and the reboot resolved.  
Cheers!
--Rob
0

Featured Post

Vote for the Most Valuable Expert

It’s time to recognize experts that go above and beyond with helpful solutions and engagement on site. Choose from the top experts in the Hall of Fame or on the right rail of your favorite topic page. Look for the blue “Nominate” button on their profile to vote.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Background Information Recently I have fixed file server permission issues for one of my client. The client has 1800 users and one Windows Server 2008 R2 domain joined file server with 12 TB of data, 250+ shared folders and the folder structure i…
How to set-up an On Demand, IPSec, Site to SIte, VPN from a Draytek Vigor Router to a Cyberoam UTM Appliance. A concise guide to the settings required on both devices
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…
Suggested Courses

864 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question