• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 331
  • Last Modified:

unable to get more than one user on VPN

I am running SBS2008 and I've configured the windows RAS services on for vpn. and the VPN works ok for one user at a time. If one user is connected and I try to connect , it just continue to try the connection is never maid.  On the server RAS is configured for 5 connections so I should be able to connect.   PPTP ... has anyone seen this issue before?
0
tips54
Asked:
tips54
  • 8
  • 5
  • 2
  • +1
3 Solutions
 
Cliff GaliherCommented:
This is usually caused by an edge router that isn't properly configured for GRE passthrough. how to fix it depends on your router...abd some routers simply don't support multiple GRE connections, in which case you need to upgrade.
0
 
tips54Author Commented:
would this be a firewall or router?  the router is maintained by my ISP and they say the pass everything to me at the firewall. maybe firewall?
0
 
Rob WilliamsCommented:
Are the two users connecting from the same site?  Client side; all routers have a limit as to how many simultaneous PPTP pass-through connections they can support. Few are more than ten, but many are only one.  If they are at the same site, what make and model router is it, we may be able to confirm how many connections it will support.
0
Prepare for an Exciting Career in Cybersecurity

Help prevent cyber-threats and provide solutions to safeguard our global digital economy. Earn your MS in Cybersecurity. WGU’s MSCSIA degree program curriculum features two internationally recognized certifications from the EC-Council at no additional time or cost.

 
Cliff GaliherCommented:
Could be router OR firewall. Both need to support multiple GRE passthrough.
0
 
tips54Author Commented:
The router is a Cisco router, I will get the model in the morning.  my firewall is a Watchguard 750E.
0
 
Rob WilliamsCommented:
I was curious as to whether you have multiple clients connecting from the same site and if so what the router at that site is.
0
 
tips54Author Commented:
no. these are remote users connecting.

also, for some reason when the one user connecting he can't ping a server by name ,  the name does not resolve,, only IP works. please advise.
0
 
Rob WilliamsCommented:
>>"no. these are remote users connecting."
But are they connecting from the same site?

>>"can't ping a server by name "
You need to add the DNS suffix and SBS server IP to DNS as per:
http://blog.lan-tech.ca/2011/05/14/vpn-client-name-resolution-2/
0
 
tips54Author Commented:
The server is in Atlanta and they are connecting from their homes in CA
0
 
rumytauluCommented:
Did the client connect with auth? (eg: tls-auth)
If so don't forget to generate client certificate per client connection and copy the certificate (a client.key and client.crt) along with ta.key to the client computer and use that to config your client connection to the VPN server.

--
rumy
0
 
tips54Author Commented:
I will. Try that
0
 
Rob WilliamsCommented:
This is SBS and a simple PPTP VPN. There are no certificates involved, assuming a default configuration.
0
 
tips54Author Commented:
it is not the most efficient is it?
0
 
Rob WilliamsCommented:
It is very efficient in terms of performance, and ease of configuration and management, but not as secure as SSTP, L2TP, or IPSec.
0
 
tips54Author Commented:
I have implemented a Sonicwall vpn.
0
 
tips54Author Commented:
I've requested that this question be closed as follows:

Accepted answer: 0 points for tips54's comment #a38563959

for the following reason:

ok
0

Featured Post

How to Use the Help Bell

Need to boost the visibility of your question for solutions? Use the Experts Exchange Help Bell to confirm priority levels and contact subject-matter experts for question attention.  Check out this how-to article for more information.

  • 8
  • 5
  • 2
  • +1
Tackle projects and never again get stuck behind a technical roadblock.
Join Now