Solved

Windows SBS VPN access local recources

Posted on 2012-03-30
5
296 Views
Last Modified: 2012-04-19
Hi there,

i have a Windows SBS 2008 standard network. One remote site with 10 clients is connected over VPN to the SBS server.

The problem i have is, if the VPN fails the clients on the remote network cant even access local shares and the local MYSQL express server. I think it is because they cant authenticate with the domain controller.

My question is, is it possible (without having an RODC) to allow in case that the VPN fails access to the local resources?
0
Comment
Question by:r_i_c_o
  • 3
  • 2
5 Comments
 
LVL 77

Accepted Solution

by:
Rob Williams earned 500 total points
ID: 37791278
When the VPN fails they should still be able to log onto their machines using cached credentials, and as a result they should also be able to access local resources, however if DNS is properly configured they  cannot resolve DNS names without the VPN.  Can they access a resource using the IP such as \\192.168.123.123\Share1 ?  This would verify it is a DNS issue and not an AD/authentication issue.  If that is the case you could make use of LMHosts and Hosts files (former for NetBIOS names and latter for DNS names).
https://msmvps.com/blogs/robwill/archive/2008/05/10/lmhosts-and-hosts-files.aspx

The correct solution though, especially with 10 users, is a local DNS server.  It can even be an old 2003 server.
0
 

Author Comment

by:r_i_c_o
ID: 37804498
Thanks Rob for your fast response. I added the computer with the local MSSQL database to the host file on each computer. It seams fine when the VPN only fails for a short time.

Do you know if there is a way to change the frequency of user authentication or extend the time this is valid?

Thanks again for your help.
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 37808861
Hosts files are valid indefinately, but the question is why is the VPN failing.  That should be a rare occurance with a site to site VPN.
0
 

Author Comment

by:r_i_c_o
ID: 37868629
Thanks Rob,  the VPN is is failing as the modem on the server site sometimes freezes. I will change the hardware to get it a bit more stable. Thanks for your advise.
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 37868635
Glad to hear you were able to isolate the problem.
Thanks r_i_c_o
Cheers!
--Rob
0

Featured Post

Maximize Your Threat Intelligence Reporting

Reporting is one of the most important and least talked about aspects of a world-class threat intelligence program. Here’s how to do it right.

Join & Write a Comment

Installing a printer using group policy preferences is not that hard let’s take a look at it. First lets open up your group policy console and edit the policy you want to add it to. I recommend creating a new policy for each printer makes it a l…
Introduction You may have a need to setup a group of users to allow local administrative access on workstations.  In a domain environment this can easily be achieved with Restricted Groups and Group Policies. This article will demonstrate how to…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

757 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

22 Experts available now in Live!

Get 1:1 Help Now