VPN issues SBS 08

I have SBS 2008 and I used the SBS Console to configure VPN. I can VPN in from the location I was at when the VPN was setup (home). I thought VPN was setup correclty as I can VPN in all day everyday from home, but no other location. I believe this has something to do with what IP addresses can connect. Does this sound right? And if so, how can I configure it to allow other IP addresses? Every other location I am using the same IP address and login credentials. Any ideas?? thanks.
level9techAsked:
Who is Participating?
 
Rob WilliamsConnect With a Mentor Commented:
The primary restriction is the subnet used locally at the remote site MUST be different from that od the server site. If both sites for example use 192.168.1.x you will not be able to work. Therefore if your server uses a very common subnet such as 192.168.1.x you will find you cannot work from many locations as people tend to choose defaults.
0
 
level9techAuthor Commented:
Nope we setup the server on the 192.168.12.x network so we could VPN from the 192.168.10, and 192.168.1 network
0
 
Rob WilliamsConnect With a Mentor Commented:
It is possible to create a "remote access policy" that will block remote IP's but it has to be manually configured and involves numerous steps. That would not be configured unless someone did so intentionally.
It is also possible to create restrictions on the router, but I am doubtful of that as well.

Is the working remote machine domain joined?
It is possible there is also only one PPTP port opened, though it should be 5 by default.   To check open the Routing and Remote Access Console | expand the server name | click on ports | in the right hand window it will show all the ports. To adjust right click in the white space and choose properties | then highlight PPTP and click configure to increase.

Also did you manually configure the VPN client or copy the install file from the SBS C:\Users\Public\Public Downloads
0
Worried about phishing attacks?

90% of attacks start with a phish. It’s critical that IT admins and MSSPs have the right security in place to protect their end users from these phishing attacks. Check out our latest feature brief for tips and tricks to keep your employees off a hackers line!

 
level9techAuthor Commented:
-Remote machine isnt on the domain.
-Multiple PPTP prots open.
-Manually configured the VPN client. The only thing I see in C:\users\public\public downloads is certificate stuff.

0
 
Rob WilliamsConnect With a Mentor Commented:
Sorry, you are correct there is only a certificate installer there, the Connection Manager was removed with SBS 2008.

Very odd.
You said you are using the same user credentials from different sites. Just to confirm, that is true? Users do need to be granted permissions.

When the connection fails, what error # is displayed, such as 800, 691, 721?
0
 
level9techAuthor Commented:
Error 619- A connection to the remote computer could not be established, so the port used for this connection was closed.

I am using the same creditionals from my home as other locations. I tested VPN from an office computer inside the office with no issues. Just whenever I try from anywhere other then my home I get that error.
0
 
Rob WilliamsConnect With a Mentor Commented:
Any chance the ISP for the problematic sites is SBC?
0
 
level9techAuthor Commented:
No, they have a T1 Line. We ran windows updates and rebooted server and now we have no issues connecting. Not sure what the issue was but its resolved now. Thanks.
0
 
Rob WilliamsCommented:
Thanks level9tech. Good to hear it was resolved. It's possible some part of RRAS was locked and the reboot resolved.  
Cheers!
--Rob
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.