Solved

Windows SBS VPN access local recources

Posted on 2012-03-30
5
297 Views
Last Modified: 2012-04-19
Hi there,

i have a Windows SBS 2008 standard network. One remote site with 10 clients is connected over VPN to the SBS server.

The problem i have is, if the VPN fails the clients on the remote network cant even access local shares and the local MYSQL express server. I think it is because they cant authenticate with the domain controller.

My question is, is it possible (without having an RODC) to allow in case that the VPN fails access to the local resources?
0
Comment
Question by:r_i_c_o
  • 3
  • 2
5 Comments
 
LVL 77

Accepted Solution

by:
Rob Williams earned 500 total points
ID: 37791278
When the VPN fails they should still be able to log onto their machines using cached credentials, and as a result they should also be able to access local resources, however if DNS is properly configured they  cannot resolve DNS names without the VPN.  Can they access a resource using the IP such as \\192.168.123.123\Share1 ?  This would verify it is a DNS issue and not an AD/authentication issue.  If that is the case you could make use of LMHosts and Hosts files (former for NetBIOS names and latter for DNS names).
https://msmvps.com/blogs/robwill/archive/2008/05/10/lmhosts-and-hosts-files.aspx

The correct solution though, especially with 10 users, is a local DNS server.  It can even be an old 2003 server.
0
 

Author Comment

by:r_i_c_o
ID: 37804498
Thanks Rob for your fast response. I added the computer with the local MSSQL database to the host file on each computer. It seams fine when the VPN only fails for a short time.

Do you know if there is a way to change the frequency of user authentication or extend the time this is valid?

Thanks again for your help.
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 37808861
Hosts files are valid indefinately, but the question is why is the VPN failing.  That should be a rare occurance with a site to site VPN.
0
 

Author Comment

by:r_i_c_o
ID: 37868629
Thanks Rob,  the VPN is is failing as the modem on the server site sometimes freezes. I will change the hardware to get it a bit more stable. Thanks for your advise.
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 37868635
Glad to hear you were able to isolate the problem.
Thanks r_i_c_o
Cheers!
--Rob
0

Featured Post

Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
In this article, I am going to show you how to simulate a multi-site Lab environment on a single Hyper-V host. I use this method successfully in my own lab to simulate three fully routed global AD Sites on a Windows 10 Hyper-V host.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

863 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

23 Experts available now in Live!

Get 1:1 Help Now