problem with VPN on Windows server 2008 with routing and remote access

Hi

I try to set up my server so that i can connect through VPN from home to my server but i don't seem to succeed.
I installed the role routing and remote access on my server and configured it but when i go and see the specifications on routing and remote access i can see that under IPv4 my internal interface doesn't have an IP address and that the operational status is set to non-operational

When i try to make a VPN connection i get the following error:

"Connection failed with error 800:
The remote connection was not made because the attempted VPN tunnels failed. The VPN server might be unreachable. If this connection is attempting to use an L2TP/IPsec tunnel, the security parameters required for IPsec negotiation might not be configured properly."

Anyone has an idea of what i'm doing wrong

thanks in advance
techneitsolutionsAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Darius GhassemCommented:
Have you setup your system with an external IP address to contact with? Does you router port forward the IP address?
0
techneitsolutionsAuthor Commented:
hi

Yes, i set up a VIP that will trasnfer the packets from port 1723 to my server.

When i try to connect my VPN, it lags on "verifyinig username and password" and when i check the logs of my firewall i see that the traffic has been passed through so it's really a problem with the server (the installation of RRAS)

thanks for your answer
0
IT Pros Agree: AI and Machine Learning Key

We’d all like to think our company’s data is well protected, but when you ask IT professionals they admit the data probably is not as safe as it could be.

techneitsolutionsAuthor Commented:
dariusg, thanks for your answer

I followed this instructions to the letter, nevertheless i get the mentioned problem ...

any idea what could be wrong?

thanks in advancec
0
Darius GhassemCommented:
Must be a firewall configuration or router config blocking accesss. Can you the external IP address that is used?
0
techneitsolutionsAuthor Commented:
hi darius

i don't think it's a firewall problem, cause i see the packets passing the firewall and being send to the server.

On my server windows firewall is turned off, so that can't be a problem either.

when i try to connect with my machine i get the error " Connection failed with error 800:
The remote connection was not made because the attempted VPN tunnels failed. The VPN server might be unreachable. If this connection is attempting to use an L2TP/IPsec tunnel, the security parameters required for IPsec negotiation might not be configured properly."

thanks
0
Darius GhassemCommented:
The error states that the connection failed because the VPN server could not be reached or the tunnel couldn't be create which points to a router problem or firewall problem.


Let's do this create a VPN with a local IP scheme and connect to it through you internal network.
0
techneitsolutionsAuthor Commented:
Hi dariusg

I did some tests and this is what i found out ...

If i set up a VPN from internal, everything works. My RRAS gets an IP-address and i can connect with the VPN

if i try from external, i see in the logs of my juniper firewall that the traffic passes and that it get's forwarded to my server with RRAS.

I installed wireshark on my server, and at the point that my clients tries to make a connection, i can see that the packages with protocl PPTP  arrive on my server.
From internal everything gets handled perfectly, but from external it's get's disconnected after Set-Link-Info in wireshark

thanks
0
Darius GhassemCommented:
So, you can connect without any issues internal but external is still a problem. How about the firewall might be causing an issue when trying to send the messages to create the tunnel back to the external client.
0
techneitsolutionsAuthor Commented:
we found the issue

the problem was that PPTP was not enabled in the ALG security setting in the SSG5

thx for the help
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows Server 2008

From novice to tech pro — start learning today.