Solved

Win 7 pro/OpenVPN/TightVNC remote access problem  over vpn

Posted on 2015-01-16
8
107 Views
Last Modified: 2015-11-21
I have a small WS 2012 R2 domain at work with 8 Win 7 pro workstations.

At home I use openvpn & tightvnc to connect to the domain from a win 7 pro box and log onto any machine. VPN and TightVNC work perfectly

Just put in another win7pro box at work.  Domain controller sees it, other workstations see it and I can connect to it on the local lan from any other box with tightvnc.  Can ping to and from.

At hone I cannot ping or connect using TightVNC or remote desktop.  Can only access the box by logging into another box with TightVNC then instigating a session to the new box.  This works, but the latency is a obviously a problem, and doesn't solve the primary requirement of a direct connection.

Can't just pop into work, its a 25 mile round trip, so really need some pointers as to where I need to look for issues.  I am thinking its windows firewall, but can't see anything different from the other boxes.

Thanks

Christopher
0
Comment
Question by:chrisatwork
  • 5
  • 3
8 Comments
 
LVL 3

Expert Comment

by:Brent Arnold
ID: 40553957
I'm assuming a tracert goes successfully until it hits the Windows 7 machine in question and then times out?
0
 

Author Comment

by:chrisatwork
ID: 40553992
It appears to get to the virtual ip of the openvpn server at the far end (10.8.0.1) then times out

If I tracert to any other machine on the domain, the first hop is to 10.8.0.1 and the next gets to the machine.
0
 
LVL 3

Expert Comment

by:Brent Arnold
ID: 40554040
Does Event Viewer on the Windows 7 machine in question log any failed authentication attempts?
0
Courses: Start Training Online With Pros, Today

Brush up on the basics or master the advanced techniques required to earn essential industry certifications, with Courses. Enroll in a course and start learning today. Training topics range from Android App Dev to the Xen Virtualization Platform.

 

Author Comment

by:chrisatwork
ID: 40554359
Bit slow and difficult to view the logs remotely, I'm at the workplace tomorrow so will grab the logs to investigate.  In the quick look just now via the server machine and a local TVNC session, in the Application logs it recorded the tightvnc access when I logged in, as Authentication passed by the server ip, event 247, tvnserver.  I tried to initiate a remote connection which failed of course and there was no entry in the destination machine Application log so I guess it didn't get that far.  There are a lot of entries HHCTRL with ID 1904.

This is not an area I have much expertise in so which logs would be relevant to examine? And is there a quick way to dump them onto a portable drive to examine at home?
0
 
LVL 3

Accepted Solution

by:
Brent Arnold earned 500 total points
ID: 40555157
Chris,

You should be able to find logs through Event Viewer > Applications Services and Logs
or
Event Viewer > Administrative Events

Look for failed authentication events or anything that's labeled TightVNC.

However, the fact that you can't tracert or ping to the computer in question means you probably do have some type of firewall issue that's blocking access from the outside. Do you have any type of hardware firewall at work? Are there any firewall rules or groups that the new computer has not been assigned?
0
 

Author Comment

by:chrisatwork
ID: 40559890
Hi Brent

I am in at work tomorrow (Wed) so will have a good look at the machine in question, too difficult over the tunnel.  We use Norton AV on all the workstations so I will check that setup as well.  

Strange that I can tracert and ping the box when on the local lan, and also access it with TightVNC and Remote Desktop,  but only get to the machine over the vpn by logging into another lan box then invoking a TightVNC session from that box).  Has to be something in the machine setup rather than a network issue?

Christopher
0
 

Author Comment

by:chrisatwork
ID: 40579457
Well I had a good look at the problem machine, it is visible on the domain and has similar network settings to other machines which I can access over the vpn.  Access to it via TVNC works perfectly whilst on the domain lan, either in person or by logging into another box over the vpn and initiating TVNC from that box.
Could see nothing in the logs relating to login attempts but I don't really know what logs I should be examining.  The machine has a fixed ip, as do the other machines I can access.
Tracert to another machine (but not the openvpn server) returns the first hop to the virtual ip of the openvpn server and the second hop to the machine in question.  Doing the same to the problem box, shows the first hop to the virtual ip then the remaining hops time out.
Don't know whether it is an openvpn or network issue.  Remote Desktop also won't connect.
Would really appreciate some pointers as to where to look, remember that I am self taught and domains are not my strong point!
Thanks
Christopher
0
 

Author Closing Comment

by:chrisatwork
ID: 41288907
Sorry, I never closed this question.  Can't even remember how I solved it!  Thanks for the guidance

Christopher
0

Featured Post

Gigs: Get Your Project Delivered by an Expert

Select from freelancers specializing in everything from database administration to programming, who have proven themselves as experts in their field. Hire the best, collaborate easily, pay securely and get projects done right.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In a hurry?.. scroll down to "HERE's HOW TO DO IT" Section. Greetings All, I was going to post this as question/solution, but its seems more appropriate as an article considering its length.  I felt it important to illucidate all the details c…
The way I use Experts Exchange to assist me in analyzing and diagnosing a problem is I first enter a Verbose Question at Experts Exchange like: Office 2007 will hang when opening and saving files I then launch WordPad (any text editor will do) an…
This video Micro Tutorial explains how to clone a hard drive using a commercial software product for Windows systems called Casper from Future Systems Solutions (FSS). Cloning makes an exact, complete copy of one hard disk drive (HDD) onto another d…
Windows 8 comes with a dramatically different user interface known as Metro. Notably missing from the new interface is a Start button and Start Menu. Many users do not like it, much preferring the interface of earlier versions — Windows 7, Windows X…

813 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now