[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

Unable to connect to domain without VPN active

Posted on 2011-10-04
10
Medium Priority
?
259 Views
Last Modified: 2012-05-12
I am in the same physical office, on the same physical network, same subnet, etc...

I can ping the server by internal and external IP addresses, but I can only connect with mstsc /v:server_name if I connect to the VPN first. I also cannot find the domain controller when attempting to add a machine to the domain without first connecting to the VPN.

This is fine, except I can't log in without first connecting to the VPN either. Not so fine.

Server 2003 R2 and XP Pro
0
Comment
Question by:Vampireofdarkness
  • 6
  • 4
10 Comments
 
LVL 9

Author Comment

by:Vampireofdarkness
ID: 36908785
Also, nslookup -type=srv domain fails unless connected to VPN.
0
 
LVL 9

Author Comment

by:Vampireofdarkness
ID: 36908815
I am also unable to connect to \\server_name without the VPN open.
0
 
LVL 37

Expert Comment

by:Neil Russell
ID: 36908840
Does your domain controller have Multiple NIC's installed by any chance?
0
New Tabletop Appliances Blow Competitors Away!

WatchGuard’s new T15, T35 and T55 tabletop UTMs provide the highest-performing security inspection in their class, allowing users at small offices, home offices and distributed enterprises to experience blazing-fast Internet speeds without sacrificing enterprise-grade security.

 
LVL 9

Author Comment

by:Vampireofdarkness
ID: 36908853
It does not. One NIC on 192.168.0.250.

RRAS shows Loopback, Local Area and Internal. Only dedicated has a device name.
IP Routing > General shows .240 and .250 for Local Area, 100 for Internal
0
 
LVL 9

Author Comment

by:Vampireofdarkness
ID: 36908862
I don't know why 100 is assigned. I can't ping it without the VPN, so I'm assuming that's where the problem lies. .100 is not assigned in IP config as an additional address.
0
 
LVL 37

Expert Comment

by:Neil Russell
ID: 36908881
0
 
LVL 37

Expert Comment

by:Neil Russell
ID: 36908887
Basically RRAS should NEVER be installed and configured on your DC
0
 
LVL 9

Author Comment

by:Vampireofdarkness
ID: 36909066
It works without RRAS; however, I know that RRAS works on a DC, as I have seen it previously.

We also need VPN access, as we have two sites. I could set another set up as RRAS I guess, but for 5 employees to get in it seems like a waste.
0
 
LVL 37

Accepted Solution

by:
Neil Russell earned 2000 total points
ID: 36929854
RRAS  CAN be made to work yes but you have to break lots of things that should be automatically configured by an AD server and configure them manually. The trouble it causes is imense and not worth the hastle.

http://forums.techarena.in/active-directory/1231884.htm
0
 
LVL 9

Author Closing Comment

by:Vampireofdarkness
ID: 37009403
Untested. Thanks for the link.
0

Featured Post

Upgrade your Question Security!

Add Premium security features to your question to ensure its privacy or anonymity. Learn more about your ability to control Question Security today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This is an article about my experiences with remote access to my clients (so that I may serve them) and eventually to my home office system via Radmin Remote Control. I have been using remote access for over 10 years and have been improving my metho…
ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

872 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question