Avatar of goliveuk
goliveuk asked on

SBS 2011 VPN issue

Hello,

 I have a SBS 2011 server, on which I configured the VPN via the console.  When I try to connect to the server, I receive the error - see the attached file. I forwarded 1723 port to the SBS, and no luck. The user is in VPN group.

Any ideas how to troubleshoot that?

The SBS is behind a Vingor 2920, to which I have connected a BT Hub.
SBSVPNWindows Networking

Avatar of undefined
Last Comment
Olaf De Ceuster

8/22/2022 - Mon
David Atkin

Hello,

Have you forwarded the ports on both the Draytek and the BT Hub?

Make sure that the Draytek VPN Settings are disabled.  This has caused me issues previously.
ASKER
goliveuk

I forwarded 1723 from the BTHub to the Draytek, and from the Draytek to the SBS. canyouseeme.org show 1723 as opened :)
David Atkin

Did you check that the Draytek VPN Settings where disabled in:

VPN and Remote Access> Remote Access Control.

All the options want to be unticked.
Your help has saved me hundreds of hours of internet surfing.
fblack61
ASKER
goliveuk

All of them unticked.
David Atkin

Can you upload the file attachment?  It didn't upload originally
ASKER
goliveuk

Uuups, Here it is :)
sbs-vpn.png
Get an unlimited membership to EE for less than $4 a week.
Unlimited question asking, solutions, articles and more.
David Atkin

I've done a port test on 1723 to the location in your screenshot.  It shows it as closed.

Can you create the VPN to the IP Address instead of the name?
ASKER
goliveuk

David Atkin

Your remote.oppco.co.uk record is currently pointing to:
86.182.224.134

Can you try creating the VPN connection using the IP address rather than the name.
I started with Experts Exchange in 2004 and it's been a mainstay of my professional computing life since. It helped me launch a career as a programmer / Oracle data analyst
William Peck
ASKER
goliveuk

Yep, I tried directly to the IP, and it is the same.

P.S. I will fix the record later.
David Atkin

No problem, just making sure we are on the same page (Y).

Can you log in using the Administrator credentials?

If possible, can you post a screen shot of the port rules in the BT Hub and Draytek - Sorry to be a pain!
ASKER
goliveuk

Here both of them
Draytek.png
BTHub.png
Get an unlimited membership to EE for less than $4 a week.
Unlimited question asking, solutions, articles and more.
David Atkin

Does your OWA port mapping work?

Any particular reason why you're using the BT Router still and not the DrayTek direct?

Do you get any errors in the event logs relating the VPN Connection or does nothing show?
ASKER
goliveuk

OWA works like a charm.

Here is what I got just now:

A connection between the VPN server and the VPN client <ip adress> has been established, but the VPN connection cannot be completed. The most common cause for this is that a firewall or router between the VPN server and the VPN client is not configured to allow Generic Routing Encapsulation (GRE) packets (protocol 47).
ASKER CERTIFIED SOLUTION
David Atkin

Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
See how we're fighting big data
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question
Olaf De Ceuster

You need to allow GRE on the router.
(Or PPTP pass through as it is sometimes called).
Check your routers documentation.
Hope that helps,
Olaf
This is the best money I have ever spent. I cannot not tell you how many times these folks have saved my bacon. I learn so much from the contributors.
rwheeler23