Solved

Windows SBS VPN access local recources

Posted on 2012-03-30
5
301 Views
Last Modified: 2012-04-19
Hi there,

i have a Windows SBS 2008 standard network. One remote site with 10 clients is connected over VPN to the SBS server.

The problem i have is, if the VPN fails the clients on the remote network cant even access local shares and the local MYSQL express server. I think it is because they cant authenticate with the domain controller.

My question is, is it possible (without having an RODC) to allow in case that the VPN fails access to the local resources?
0
Comment
Question by:r_i_c_o
  • 3
  • 2
5 Comments
 
LVL 77

Accepted Solution

by:
Rob Williams earned 500 total points
ID: 37791278
When the VPN fails they should still be able to log onto their machines using cached credentials, and as a result they should also be able to access local resources, however if DNS is properly configured they  cannot resolve DNS names without the VPN.  Can they access a resource using the IP such as \\192.168.123.123\Share1 ?  This would verify it is a DNS issue and not an AD/authentication issue.  If that is the case you could make use of LMHosts and Hosts files (former for NetBIOS names and latter for DNS names).
https://msmvps.com/blogs/robwill/archive/2008/05/10/lmhosts-and-hosts-files.aspx

The correct solution though, especially with 10 users, is a local DNS server.  It can even be an old 2003 server.
0
 

Author Comment

by:r_i_c_o
ID: 37804498
Thanks Rob for your fast response. I added the computer with the local MSSQL database to the host file on each computer. It seams fine when the VPN only fails for a short time.

Do you know if there is a way to change the frequency of user authentication or extend the time this is valid?

Thanks again for your help.
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 37808861
Hosts files are valid indefinately, but the question is why is the VPN failing.  That should be a rare occurance with a site to site VPN.
0
 

Author Comment

by:r_i_c_o
ID: 37868629
Thanks Rob,  the VPN is is failing as the modem on the server site sometimes freezes. I will change the hardware to get it a bit more stable. Thanks for your advise.
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 37868635
Glad to hear you were able to isolate the problem.
Thanks r_i_c_o
Cheers!
--Rob
0

Featured Post

Announcing the Most Valuable Experts of 2016

MVEs are more concerned with the satisfaction of those they help than with the considerable points they can earn. They are the types of people you feel privileged to call colleagues. Join us in honoring this amazing group of Experts.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A quick step-by-step overview of installing and configuring Carbonite Server Backup.
This article shows the method of using the Resultant Set of Policy Tool to locate Group Policy that applies a particular setting.
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

830 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question