Solved

Windows 2008 server Std 32 bit - Remote access through Dyndns is no longer available

Posted on 2013-01-09
15
893 Views
Last Modified: 2013-01-26
One of my clients has a small office with a five user Windows 2008 Std 32 bit server in a domain with Win xp boxes. They remotely access the server with no oriblem by RDP. She reported not being able to conenct a few weeks ago. I just had a cjhance to look into it and I cannit connect either using their current dymanic IP. I checked it at www.whatismyip.com and verified it using the Google geo-locator service.

I was able to loginto the server as the admin by logmein and it appears to be workling fine.

The dyndns client is running and I noticed it had an updated IP. I tried connecting by RDP with that IP and received a message  from my RD client "This computer cannot connect to the remote computer".

I tried with the public IP and their dyndns address xxx.dyndns.org
0
Comment
Question by:Tony Giangreco
  • 8
  • 2
  • 2
  • +1
15 Comments
 

Expert Comment

by:RicBuck89
ID: 38759811
Typically Dyndns will be handled by your firewall. You link your account to what ever the hostname of DYNDNS is. I use Dyndns, otherwise no-ip works to. Secondly you need to make sure port 3389 is forwarded to the server through the firewall. I do not recommend to do this since it is a security risk. A better way would be to use a VPN.

Use www.ipchicken.com to verify your WAN IP, then log into your Dyn account and verify that it matches.
0
 
LVL 11

Expert Comment

by:Tasmant
ID: 38759816
- if you connect to server from a local computer (target = local IP of server, or DNS hostname), it may be the server has RDP protocol allowed for corporate identified network.

- if you connect to server from a remote location (target = router's and/or firewall's public IP), in which case you need to ensure RDP protocol is allowed and correctly forwarded to server's local IP. On server, check RDP Protocol is allowed on internal firewall for every network location (home/public/corporate)
0
 
LVL 25

Author Comment

by:Tony Giangreco
ID: 38759941
Ok, I logged into the server with Logmein as the domain admin.

I launched IPchicken and verified the IP I tried was exact. I verified the dyndns IP matched.

I checked the RDP manager service and it is auto and running. I opened RDP manager and say the user who reported the problem had an active session from 70 days ago but was disconnected. I reset that session and it was auto deleted. i tried conencting from my off site office with rdp using the IP and then the dyndns name, and received the same message  "compuyer cannot connect".

They have a Sonicwall TZ185 firewall, found the RDP settings. they have the remote user's IP and it is correct. Mine is listed also and it's correct. The IP listed for the server and firwall in each line is correct.  

I maintain all changes and the firewall has not been logged into or changed in about a year. I logged into it today and found in the log where the client's connection was being rejected.
0
Does Powershell have you tied up in knots?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 

Expert Comment

by:RicBuck89
ID: 38759972
http://www.yougetsignal.com/tools/open-ports/

Type in 3389 and your IP. Verify it is open

Temporally disable firewall on the server and try again.
0
 
LVL 25

Author Comment

by:Tony Giangreco
ID: 38760084
It says the firewall is not open, but I have rules in the firewall to only allow a connection from specific user addreses.
0
 
LVL 25

Author Comment

by:Tony Giangreco
ID: 38760096
I'm going to see if the AV is blocking it. We installed a new version a month ago. I'll let you know.
0
 
LVL 25

Author Comment

by:Tony Giangreco
ID: 38769947
I worked on this server yesterday. I discovered one user was originally setup to use a pptp-vpn from her home Pc. I logged into her pc and it's an XP box with the generic Windows PPTP-VPN client setup.

I've checked the Comcast modem and it's set to allow port forwarding for RDP on port 3390 and forward to the Sonicwall TZ180 firewall. We still cannot login through RDP. I'm waiting to hear frm Comcast to see if they added a port 3389 block.

Any other ideas?
0
 
LVL 25

Author Comment

by:Tony Giangreco
ID: 38769949
While this user is logged into the server using a PPTP-VPN, does that stop anyone else from logging into the server using Windows RDP?
0
 
LVL 23

Expert Comment

by:Brian B
ID: 38778679
Since you said their IP changed, you might also want to make sure the firewall rules are not set to the old IP, either on the soncwall or the modem (since it sounds like it has some firewall capabilities itself).

To asnwer your other question, PPTP won't interfere with RDS since they are on separate ports.
0
 
LVL 25

Author Comment

by:Tony Giangreco
ID: 38798678
Sorry, I didn;t mean their IP changed. From what I've checked it didn't change.
0
 
LVL 25

Accepted Solution

by:
Tony Giangreco earned 0 total points
ID: 38801566
None of the solutions provided have helped. The problem exists. It;s ok to close this question.
0
 
LVL 23

Expert Comment

by:Brian B
ID: 38801743
Youwill need to close the question yourself. If none of us helped, you can accept your own answer as the solution. However, if you did anything to fix the problem, please provide a brief description to help others who may be searching on a similar problem.
0
 
LVL 25

Author Closing Comment

by:Tony Giangreco
ID: 38821808
No solution I received worked.
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article shows how to deploy dynamic backgrounds to computers depending on the aspect ratio of display
Last week, our Skyport webinar on “How to secure your Active Directory” (https://www.experts-exchange.com/videos/5810/Webinar-Is-Your-Active-Directory-as-Secure-as-You-Think.html?cid=Gene_Skyport) provided 218 attendees with a step-by-step guide for…
This tutorial will walk an individual through setting the global and backup job media overwrite and protection periods in Backup Exec 2012. Log onto the Backup Exec Central Administration Server. Examine the services. If all or most of them are stop…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

856 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question