Solved

cannot access 2003 server with rdp

Posted on 2011-09-11
17
208 Views
Last Modified: 2012-06-27
HI, I have a 2003 server that I used to be able to access by remote desktop.  suddenly I cannot.
also, this server runs a sql2000 database program that my terminal services users cannot connect to anymore.
what should I check?
0
Comment
Question by:195ecentralave
  • 7
  • 3
  • 3
  • +2
17 Comments
 
LVL 4

Expert Comment

by:0x6
ID: 36520444
Are you able to ping the server by name or IP?
Try after a restart, if possible. As always have a current backup before restarting.

From a command prompt on your PC try:
telnet servername 3389
0
 

Author Comment

by:195ecentralave
ID: 36520477
I cannot connect by telnet servername 3389

how do i open that port?
0
 

Author Comment

by:195ecentralave
ID: 36520479
cannot ping either
0
 
LVL 10

Accepted Solution

by:
SuperTaco earned 250 total points
ID: 36520560
if the server is up and you can't ping it, try disabling IPSEC Service.  

if yo can ping it, then repair IPSEC

http://msmvps.com/blogs/richardwu/archive/2006/01/13/80970.aspx
0
 
LVL 8

Expert Comment

by:Amitabh Singh
ID: 36521499
hi i recommend you to check the fallowing

reboot your system and then try to RDP if not working then do the fallowing

1st : check your cable connection if its connected properly and working (can be some loss or dad cable)
2nd : check your system Lan card configuration if IP is correct and Lan card is enable
3nd : disable windows firewall service if running

now try to ping some server from your windows 2003 server if possible , if ping is working now , Disable and enable RDP again !
0
 
LVL 4

Expert Comment

by:0x6
ID: 36523719
Please let us know if you were able to reboot the server?
0
 

Author Comment

by:195ecentralave
ID: 36524903
did reboot, disabled ipsec service
can pin that server's ip but not the name of the server.
0
 

Author Comment

by:195ecentralave
ID: 36524908
can ping the server's ip ok, and can attach to the database by inserting the ip address instead of the name, but cannot resolve the name,
ipsec disabled.
0
Find Ransomware Secrets With All-Source Analysis

Ransomware has become a major concern for organizations; its prevalence has grown due to past successes achieved by threat actors. While each ransomware variant is different, we’ve seen some common tactics and trends used among the authors of the malware.

 
LVL 4

Expert Comment

by:0x6
ID: 36525001
Do you have access to your DNS server and are able to see/update the host record for the server?

What happens when you do:
nslookup servername
0
 
LVL 8

Expert Comment

by:Amitabh Singh
ID: 36525131
after disabling IPsec are you able to ping other server ?

as you saying name resuscitation not working , < are you able to ping DNS server ? if not check if you have some firewall in between sql and dns server which is blocking port 53  and ICMP
0
 

Author Comment

by:195ecentralave
ID: 36525407
yes, i can ping the dns server
0
 

Author Comment

by:195ecentralave
ID: 36525505
oops!  my mistake.  i cannot ping the database server.  I had the ip for that one

NOW, HERE IS SOMETHING! WHEN I PING THE NAME OF THE SQL SERVER  IT SAYS :
Pinging tmserver.rwa.llcal [192.168.1.13] with 32 bytes of data

request timed out.

BUT!!!!  that box is 192.168.1.9

and I can ping that ip
and access the database by that ip

so, why does it think that its a different ip;


i went to ipconfig, did a flusdns, release, renew adn registerdns
no help there.
but we are on to something, i think
0
 
LVL 10

Expert Comment

by:SuperTaco
ID: 36525514
did you try the IPSEC repair yet/
0
 
LVL 38

Assisted Solution

by:ChiefIT
ChiefIT earned 250 total points
ID: 36525519
Before Checking anything DNS, you should understand when a DNS query is made, and when a Netbios Query is made...

UNC stands for Universal Naming Convention. When you type in a path to a local share, there are three typical ways of doing so...

1) \\192.168.0.1\share name... As you can see, this references an IP address, that IP is then converted to a MAC address using ARP to communicate with the server or computer holding the share.
2) \\My.Server.com\share... In this case, this will look at a Fully qualified domain name. The Network redirector service will see a server name with a period in it, or if the name is larger than 15 charactors. That DNS query will either look within the local DNS cache or a DNS server, translate that to an IP address, and then again translate it into a MAC address...
3) \\Servername\Share... In this case, the UNC path is less than 15 charactors and also has no periods. So, this will contact the Netbios Name Server. Yes, Netbios is still heavily used within a domain. It is a broadcast protocol, and therefore netbios queries are often not found by a remote computer that is not within the broadcast domain.

So, when troubleshooting remember when netbios is used and DNS is used for resolving a UNC path.

With that said, Software firewalls often block Netbios and ICMP echo (Ping). But, since you can ping after a reboot (By IP, but not by netbios name) you have a problem with netbios translation. Are your clients on a remote site, where they can't reach the netbios name server with netbios broadcasts? If so, use Either the IP address, or DNS database for resolution...

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
On an unrelated issue:

If you are having problems with Terminal services (meaning remote desktop), periodically and only a reboot helps, then maybe your server is looking at another port than 3389. This was a problem with SP2... Let me see if I can find the write up on this. Reboot may only temporarily resolve the issue.

http://www.lan-2-wan.com/2003-SP2.htm
0
 

Author Comment

by:195ecentralave
ID: 36525607
when I do a nslookup tmserver on the server that has been providing dns, i get the following:

can't find server name fo raddress 192.168.1.77: non-existent domain
server: unKnown
Address 192.168.1.77

Name: tmserver.rwa.local
Address: 192.168.1.13

Now this is really strange!!
192.168.1.77 is the address of the active directory server

it is supposed to be providing dns for the entire site.

tmserver is the sql server and its ip is 192.168.1.9

so is my dns server not working correctly?

0
 
LVL 38

Assisted Solution

by:ChiefIT
ChiefIT earned 250 total points
ID: 36525729
Makes perfect sense to me:

NSlookup is only telling you it went to your AD server to perform a DNS query. Since you didn't provide the DNS suffix, your DNS query will come back as 192.168.1.77 can't find the domain and the Top level domain name server for tmserver doesn't exist.

But, then it looks in it's forward lookup zone and says: TMSERVER>.(domain suffix) has the IP address of 192.168.1.13

So, DNS is working right.

Please read: http://www.experts-exchange.com/Networking/Protocols/DNS/A_323-DNS-Troubleshooting-made-easy.html
----------------------------------------------------------------------------
NOTE:
NSLookup is STRICTLY a DNS troubleshooting utility: There is a comparable utility for netbios called NBlookup. It's free to download.

--------------------------------------------------------------------------------
Ping will troubleshoot either IP address (ARP), Servername.domain.local (DNS), or computername (netbios):

So, with a netbios problem, which you have, you can ping by IP, you can ping by computername.domain.name, and you can NOT ping by computername.
0
 
LVL 10

Assisted Solution

by:SuperTaco
SuperTaco earned 250 total points
ID: 36526221
here's another on for RDP.  i've had RDP not work when  print spooler get corrupted.  Try restarting it.  I know it has nothing to do with the NETBIOS issues but it might help an RDP issue.  Do you have a WINS server defined?
0

Featured Post

Get up to 2TB FREE CLOUD per backup license!

An exclusive Black Friday offer just for Expert Exchange audience! Buy any of our top-rated backup solutions & get up to 2TB free cloud per system! Perform local & cloud backup in the same step, and restore instantly—anytime, anywhere. Grab this deal now before it disappears!

Join & Write a Comment

by Batuhan Cetin Within the dynamic life of an IT administrator, we hold many information in our minds like user names, passwords, IDs, phone numbers, incomes, service tags, bills and the order from our wives to buy milk when coming back to home.…
On July 14th 2015, Windows Server 2003 will become End of Support, leaving hundreds of thousands of servers around the world that still run this 12 year old operating system vulnerable and potentially out of compliance in many organisations around t…
This video discusses moving either the default database or any database to a new volume.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

758 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now