Solved

SBS 2003 VPN stopped working

Posted on 2011-09-05
7
507 Views
Last Modified: 2012-05-12
SBS 2003 server, SP2 & all patches. VPN client access has been working fine for two or three years. Now, without any recent changes, updtaes, patches, VPN clients cannot connect.

The server logs RASMAN error 20209:

Event Type:      Warning
Event Source:      Rasman
Event Category:      None
Event ID:      20209
Date:            5/09/2011
Time:            8:04:28 PM
User:            N/A
Computer:      COMPUTERNAME
Description:
A connection between the VPN server and the VPN client xxx.xxx.xxx.xxxhas been established, but the VPN connection cannot be completed. The most common cause for this is that a firewall or router between the VPN server and the VPN client is not configured to allow Generic Routing Encapsulation (GRE) packets (protocol 47). Verify that the firewalls and routers between your VPN server and the Internet allow GRE packets. Make sure the firewalls and routers on the user's network are also configured to allow GRE packets. If the problem persists, have the user contact the Internet service provider (ISP) to determine whether the ISP might be blocking GRE packets.

Restarted the service & the server. Disabled & re-enabled remote access via the wizard. I can establish a VPN over the LAN, but not from the net. Tried from more than one client.

Changed the router, same deal.

I've got a bunch of sites in the same configuration with the same routers, no problem.

Any ideas?
0
Comment
Question by:snooflehammer
  • 4
  • 2
7 Comments
 
LVL 7

Expert Comment

by:karllangston
ID: 36483452
are your routers passing all vpn traffic through to the server or do your routers also hadle vpn's?
0
 

Author Comment

by:snooflehammer
ID: 36483473
Passing only the ports required. In the case of VPN port 1723 (PPTP) is port-forwarded to the server. This is all that is required for VPN access to SBS
0
 
LVL 4

Expert Comment

by:Daelt
ID: 36483631
Verify your router is VPN passthrough and check the option if there is one, then make sure your router forward port 1723 (pptp) and port 47 (GRE) to the server on the router settings.

0
Courses: Start Training Online With Pros, Today

Brush up on the basics or master the advanced techniques required to earn essential industry certifications, with Courses. Enroll in a course and start learning today. Training topics range from Android App Dev to the Xen Virtualization Platform.

 

Author Comment

by:snooflehammer
ID: 36483636
It's passthrough-compliant. It's been working OK for 3 years. This is not the issue.
0
 
LVL 4

Expert Comment

by:Daelt
ID: 36484206
Did you check with your Internet service provider if they didnt change anything in your main router or blocked any port on your connection?
0
 

Accepted Solution

by:
snooflehammer earned 0 total points
ID: 36546658
The router was faulty. Just stopped allowing the traffic. Changed the router
0
 

Author Closing Comment

by:snooflehammer
ID: 37615836
as posted
0

Featured Post

Gigs: Get Your Project Delivered by an Expert

Select from freelancers specializing in everything from database administration to programming, who have proven themselves as experts in their field. Hire the best, collaborate easily, pay securely and get projects done right.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This guide is intended for migrating Windows 2003 Standard with Exchange 2003 to Windows Small Business Server 2008. You will need the following: Exchange Best Practice Analyzer: http://www.microsoft.com/downloads/details.aspx?FamilyID=DBAB201F-…
Written by Glen Knight (demazter) as part of a series of how-to articles. Introduction One of the biggest consumers of disk space with Small Business Server 2008(SBS) is Windows Server Update Services, more affectionately known as WSUS. For t…
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

776 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question