Windows SBS VPN access local recources

Hi there,

i have a Windows SBS 2008 standard network. One remote site with 10 clients is connected over VPN to the SBS server.

The problem i have is, if the VPN fails the clients on the remote network cant even access local shares and the local MYSQL express server. I think it is because they cant authenticate with the domain controller.

My question is, is it possible (without having an RODC) to allow in case that the VPN fails access to the local resources?
r_i_c_oAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Rob WilliamsCommented:
When the VPN fails they should still be able to log onto their machines using cached credentials, and as a result they should also be able to access local resources, however if DNS is properly configured they  cannot resolve DNS names without the VPN.  Can they access a resource using the IP such as \\192.168.123.123\Share1 ?  This would verify it is a DNS issue and not an AD/authentication issue.  If that is the case you could make use of LMHosts and Hosts files (former for NetBIOS names and latter for DNS names).
https://msmvps.com/blogs/robwill/archive/2008/05/10/lmhosts-and-hosts-files.aspx

The correct solution though, especially with 10 users, is a local DNS server.  It can even be an old 2003 server.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
r_i_c_oAuthor Commented:
Thanks Rob for your fast response. I added the computer with the local MSSQL database to the host file on each computer. It seams fine when the VPN only fails for a short time.

Do you know if there is a way to change the frequency of user authentication or extend the time this is valid?

Thanks again for your help.
0
Rob WilliamsCommented:
Hosts files are valid indefinately, but the question is why is the VPN failing.  That should be a rare occurance with a site to site VPN.
0
r_i_c_oAuthor Commented:
Thanks Rob,  the VPN is is failing as the modem on the server site sometimes freezes. I will change the hardware to get it a bit more stable. Thanks for your advise.
0
Rob WilliamsCommented:
Glad to hear you were able to isolate the problem.
Thanks r_i_c_o
Cheers!
--Rob
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
SBS

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.