Solved

2008 R2 RRAS IPSec demand dial connection not connecting

Posted on 2014-10-08
3
201 Views
Last Modified: 2015-06-27
I've been tasked with setting up a persistent IPSec VPN connection from a single Widnows Server 2008 R2 server directly connected to the internet to another network. I've been provided the remote IP, preshared key, user name, and password. I do not know what the remote endpoint is at this time.

Needing a persistent connection, my first thought was Routing and Remote Access. I added the Network Policy and Access Services role, selecting Remote Access Service role. I ran the RRAS configuration wizard, selecting "Secure connection between two private networks". I then added a new demand dial interface with the wizard set to L2TP and checked properties to change it to use preshared key and connection type to persistent connection. At this point, I tried to connect and get this message:

An error occurred during connection of the interface. A Demand Dial Router attempted to connect over a port that was reserved for Remote Access Clients only.

I looked this message up and found this article that says I need to setup a certificate:
http://jamescook.me/2010/09/rras-2008-and-l2tp-wan-miniport-issues/#comment-3104

This is where I am stuck. Can anyone provide some help on how to generate the certificate and where to configure in RRAS?

I installed CA service as a standalone root CA, but when I go to generate a certificate request in Certificates MMC, there are no certificate enrollment policies.
0
Comment
Question by:ByteCafeSupport
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 

Accepted Solution

by:
ByteCafeSupport earned 0 total points
ID: 40378351
I figured out the certificate request by going to All Tasks > Advanced Operations > Create Custom Request in the certificates MMC and was able to submit request and get certificate.
0
 
LVL 35

Expert Comment

by:Seth Simmons
ID: 40854428
This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.
0

Featured Post

How our DevOps Teams Maximize Uptime

Our Dev teams are like yours. They’re continually cranking out code for new features/bugs fixes, testing, deploying, responding to production monitoring events and more. It’s complex. So, we thought you’d like to see what’s working for us. Read the use case whitepaper.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you use NetMotion Mobility on your PC and plan to upgrade to Windows 10, it may not work unless you take these steps.
I was prompted to write this article after the recent World-Wide Ransomware outbreak. For years now, System Administrators around the world have used the excuse of "Waiting a Bit" before applying Security Patch Updates. This type of reasoning to me …
This tutorial will walk an individual through locating and launching the BEUtility application to properly change the service account username and\or password in situation where it may be necessary or where the password has been inadvertently change…
This tutorial will show how to configure a new Backup Exec 2012 server and move an existing database to that server with the use of the BEUtility. Install Backup Exec 2012 on the new server and apply all of the latest hotfixes and service packs. The…

751 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question