Solved

VPN Server 2012 - unable to connect

Posted on 2014-02-19
7
805 Views
Last Modified: 2014-05-14
Hi Experts,

I have configured an L2TP VPN on my windows 2012 server. I have configure my mac client and it connects no problems. I try to configure my windows client and i receive error 809 cannot connect speak to your network administrator.

Any advise would be welcomed.

Thanks in advance.
0
Comment
Question by:isdd2000
7 Comments
 
LVL 3

Expert Comment

by:cgreiner
ID: 39945391
Not helpful, but I have the same problem. The server in question is behind a NAT firewall and does not have a public IP address directly assigned to a network interface.
0
 
LVL 42

Expert Comment

by:Rob Jurd, EE MVE
ID: 39955202
Sounds like the windows client may be firewalling the connection.  Have you tried disabling the firewall on the client?
0
 
LVL 15

Expert Comment

by:weinberk
ID: 39956232
Out of the box, MS workstations don't support L2TP when the server is behind a NAT router.  Is yours?

See general info here: http://support.microsoft.com/kb/926179 

Hope this gets you started...
0
Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

 
LVL 38

Expert Comment

by:Aaron Tomosky
ID: 39956718
Weinbark is correct, howerer another workaround is to use PPTP (for all or just for windows workstations). It works fine through NAT without client changes. Or you can get a router that allows you to terminate your vpn connections there. For example I have setup a sonicwall configured to auth to your active directory but terminate the vpn at the router.
0
 
LVL 15

Accepted Solution

by:
weinberk earned 500 total points
ID: 39957033
Sure PPTP will work, but MUCH more secure and easier to use from more locations is SSTP, Microsoft's proprietary newish technology.  It has you use a SSL certificate installed on the host, so your client knows where it's connecting to is legit and it uses port 443 (https) so it'll work from about everywhere, even where they have port 1723 and GRE (needed for PPTP) blocked.

Downside, is that it requires Windows for now (maybe there's 3rd party clients that I don't know about).
0
 

Author Comment

by:isdd2000
ID: 39960583
Hi Guys,

It is behind a NAT, its just a standarded modem but it is running NAT - will try the registry changes and get back to you.
0

Featured Post

Does Powershell have you tied up in knots?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

You might have come across a situation when you have Exchange 2013 server in two different sites (Production and DR). After adding the Database copy in ECP console it displays Database copy status unknown for the DR exchange server. Issue is strange…
Let’s list some of the technologies that enable smooth teleworking. 
This tutorial will walk an individual through the process of configuring basic necessities in order to use the 2010 version of Data Protection Manager. These include storage, agents, and protection jobs. Launch Data Protection Manager from the deskt…
This tutorial will walk an individual through the process of installing of Data Protection Manager on a server running Windows Server 2012 R2, including the prerequisites. Microsoft .Net 3.5 is required. To install this feature, go to Server Manager…

919 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now