SBS 2011 VPN connection

I have a newly installed SBS 2011 standard server, patched up, working fine. I have run the VPN config wizard and when my end users connect to the VPN, it does not give them an IP address. I have re-run the VPN wizard successfully, ran the FMNW, and checked that port 1723 is pointed to my server on my router. Router and Cable modem are the same as before, only changed from SBS 2003 to SBS 2011. All users were working ok with VPN untill the new server. Any help would really be appreciated.
terrontechAsked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
Rob WilliamsConnect With a Mentor Commented:
But the scope may have been reconfigured to 20 or less. Presumably not.

In the RRAS console if you right click on the server name and choose properties, under the IPv4 tab are enable IPv4 routing and Dynamic Host Protocol checked?
0
 
jaredr80Commented:
Have you made sure in the SBS console under the User properties that under the 'Remote Access' tab if the user has 'User can access vpn' checked off?
0
 
terrontechAuthor Commented:
Yes, it's there. Connecting isn't the problem. Getting an IP address is. Thanks.
0
Worried about phishing attacks?

90% of attacks start with a phish. It’s critical that IT admins and MSSPs have the right security in place to protect their end users from these phishing attacks. Check out our latest feature brief for tips and tricks to keep your employees off a hackers line!

 
Rob WilliamsCommented:
SBS needs to be the DHCP server
You need to run the SBS wizard and not the RRAS wizard
Makes sure the router forwards 1723 to the IP of the new server and not the old
As jaredr80 stated you need to grant access under the user name in the SBS console, or add them to the VPN user group.

Can they connect from the LAN, using the LAN IP of the wizard, just as a test.
0
 
terrontechAuthor Commented:
That's the Wizard I've run. Inside the SBS console under network, connectivity. I configured VPN from there it ran successfully. I also made sure under the user's properties that "user can access virtual private network" was enabled. I even vpn'd in as the network admin account and the behavior is the same. It let's me connect, but does not assign an IP address. Please help. Thanks again.
0
 
Rob WilliamsCommented:
As a test to see if it is a routing or VPN configuration issue try connecting from the same LAN as the server but use the server's LAN IP, not the public IP.
0
 
terrontechAuthor Commented:
Same behavior. I think it's DHCP related. I ran the fix my network wizard earlier and it found no issues. Here is the output of ipconfig/all for the PPP adapter: I replaced the company name w/ companyname.

PPP adapter Companyname VPN:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Companyname VPN
   Physical Address. . . . . . . . . :
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv4 Address. . . . . . . . . . . : 169.254.106.192(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.255
   Default Gateway . . . . . . . . . : 0.0.0.0
   DNS Servers . . . . . . . . . . . : 192.168.1.10
   NetBIOS over Tcpip. . . . . . . . : Enabled
0
 
Rob WilliamsCommented:
If you open the DHCP server are there any leases available, and there should be a green dot on the server name. If there are any red or yeelow marks it may be related to the DHCP service itself.
0
 
terrontechAuthor Commented:
Green dots on both IPV4 and IPV6. Very strange.
0
 
Rob WilliamsCommented:
and there are leases available? i.e. the scope is large enough?
0
 
terrontechAuthor Commented:
Yes, plenty. I have less than 20 users
0
 
terrontechAuthor Commented:
Hi Robwill. I resolved the issue like this. I manually disabled RRAS in the RRAS console and re-ran the VPN wizard in the SBS wizard. Thank you for your help and quick response.
0
 
terrontechAuthor Commented:
Thank you.
0
 
Rob WilliamsCommented:
Glad to hear you were able to resolve.
Thanks terrontech.
Cheers!
--Rob
0
 
MissyTuttleCommented:
Great solutions guys.  Worked like a charm.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.