I have two different isp connections with site-to-site vpn connections on each. One was a fiber connection that was just installed and brought online recently. I have moved all of the site-to-site's over to the new connection except I was having trouble with site. The issue was that they were unable to get to a win2003 server that acts as a controller to authenticate on. Now that server sits in a rack with 30+ servers and all the other servers were reachable. What that information proved to me was that the route statements were correct on my routers and the vpn tunnels were working properly. Currently I have gotten that site up by clearing the route table and adding persistent routes into it. After clearing the route table, any outside users that are using that controller are not able to authenticate because that server is not learning a new routes dynamically like it should. Rebooting that server is not an option.
Why would a 2003 server not dynamically learn a new connections coming in if route statements are correct on my routers?