Solved

Windows 2008 server Std 32 bit - Remote access through Dyndns is no longer available

Posted on 2013-01-09
15
887 Views
Last Modified: 2013-01-26
One of my clients has a small office with a five user Windows 2008 Std 32 bit server in a domain with Win xp boxes. They remotely access the server with no oriblem by RDP. She reported not being able to conenct a few weeks ago. I just had a cjhance to look into it and I cannit connect either using their current dymanic IP. I checked it at www.whatismyip.com and verified it using the Google geo-locator service.

I was able to loginto the server as the admin by logmein and it appears to be workling fine.

The dyndns client is running and I noticed it had an updated IP. I tried connecting by RDP with that IP and received a message  from my RD client "This computer cannot connect to the remote computer".

I tried with the public IP and their dyndns address xxx.dyndns.org
0
Comment
Question by:Tony Giangreco
  • 8
  • 2
  • 2
  • +1
15 Comments
 

Expert Comment

by:RicBuck89
Comment Utility
Typically Dyndns will be handled by your firewall. You link your account to what ever the hostname of DYNDNS is. I use Dyndns, otherwise no-ip works to. Secondly you need to make sure port 3389 is forwarded to the server through the firewall. I do not recommend to do this since it is a security risk. A better way would be to use a VPN.

Use www.ipchicken.com to verify your WAN IP, then log into your Dyn account and verify that it matches.
0
 
LVL 11

Expert Comment

by:Tasmant
Comment Utility
- if you connect to server from a local computer (target = local IP of server, or DNS hostname), it may be the server has RDP protocol allowed for corporate identified network.

- if you connect to server from a remote location (target = router's and/or firewall's public IP), in which case you need to ensure RDP protocol is allowed and correctly forwarded to server's local IP. On server, check RDP Protocol is allowed on internal firewall for every network location (home/public/corporate)
0
 
LVL 25

Author Comment

by:Tony Giangreco
Comment Utility
Ok, I logged into the server with Logmein as the domain admin.

I launched IPchicken and verified the IP I tried was exact. I verified the dyndns IP matched.

I checked the RDP manager service and it is auto and running. I opened RDP manager and say the user who reported the problem had an active session from 70 days ago but was disconnected. I reset that session and it was auto deleted. i tried conencting from my off site office with rdp using the IP and then the dyndns name, and received the same message  "compuyer cannot connect".

They have a Sonicwall TZ185 firewall, found the RDP settings. they have the remote user's IP and it is correct. Mine is listed also and it's correct. The IP listed for the server and firwall in each line is correct.  

I maintain all changes and the firewall has not been logged into or changed in about a year. I logged into it today and found in the log where the client's connection was being rejected.
0
 

Expert Comment

by:RicBuck89
Comment Utility
http://www.yougetsignal.com/tools/open-ports/

Type in 3389 and your IP. Verify it is open

Temporally disable firewall on the server and try again.
0
 
LVL 25

Author Comment

by:Tony Giangreco
Comment Utility
It says the firewall is not open, but I have rules in the firewall to only allow a connection from specific user addreses.
0
 
LVL 25

Author Comment

by:Tony Giangreco
Comment Utility
I'm going to see if the AV is blocking it. We installed a new version a month ago. I'll let you know.
0
How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

 
LVL 25

Author Comment

by:Tony Giangreco
Comment Utility
I worked on this server yesterday. I discovered one user was originally setup to use a pptp-vpn from her home Pc. I logged into her pc and it's an XP box with the generic Windows PPTP-VPN client setup.

I've checked the Comcast modem and it's set to allow port forwarding for RDP on port 3390 and forward to the Sonicwall TZ180 firewall. We still cannot login through RDP. I'm waiting to hear frm Comcast to see if they added a port 3389 block.

Any other ideas?
0
 
LVL 25

Author Comment

by:Tony Giangreco
Comment Utility
While this user is logged into the server using a PPTP-VPN, does that stop anyone else from logging into the server using Windows RDP?
0
 
LVL 23

Expert Comment

by:Brian B
Comment Utility
Since you said their IP changed, you might also want to make sure the firewall rules are not set to the old IP, either on the soncwall or the modem (since it sounds like it has some firewall capabilities itself).

To asnwer your other question, PPTP won't interfere with RDS since they are on separate ports.
0
 
LVL 25

Author Comment

by:Tony Giangreco
Comment Utility
Sorry, I didn;t mean their IP changed. From what I've checked it didn't change.
0
 
LVL 25

Accepted Solution

by:
Tony Giangreco earned 0 total points
Comment Utility
None of the solutions provided have helped. The problem exists. It;s ok to close this question.
0
 
LVL 23

Expert Comment

by:Brian B
Comment Utility
Youwill need to close the question yourself. If none of us helped, you can accept your own answer as the solution. However, if you did anything to fix the problem, please provide a brief description to help others who may be searching on a similar problem.
0
 
LVL 25

Author Closing Comment

by:Tony Giangreco
Comment Utility
No solution I received worked.
0

Featured Post

IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
A safe way to clean winsxs folder from your windows server 2008 R2 editions
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

744 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now