• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 134
  • Last Modified:

Server 2008 R2 Routing and Remote Access PPTP VPN issues

Hello,

Some of my users are having problems connecting via routing and remote access PPTP VPN, I myself never experience this issue however many users appear to be disconnecting and having to redial the VPN almost 10 times before it remains connected so they could carry on their work. Nothing obvious in event logs, any ideas what could be causing this?

Thanks,
Mark
0
Nolan Gustavo
Asked:
Nolan Gustavo
  • 4
  • 2
1 Solution
 
Nolan GustavoAuthor Commented:
Found warning in event log:
Failed to apply IP Security on port VPN2-113 because of error: A certificate could not be found.  Connections that use the L2TP protocol over IPSec require the installation of a machine certificate, also known as a computer certificate..  No calls will be accepted to this port.
0
 
QlemoBatchelor, Developer and EE Topic AdvisorCommented:
Check if that happens more often while more than one connection is used. It sounds like an issue with GRE session IDs and NAT - in particular if there is a firewall/router in front of the server. It's always best to have the VPN device directly connected to the WAN/Internet.
0
 
Nolan GustavoAuthor Commented:
Thanks I have enabled logging and now waiting for the connections to start dropping.
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
Nolan GustavoAuthor Commented:
Qlemo, please can you clarify on the GRE session IDs and NAT comment? this doesnt seem to affect all users, I for example cannot replicate this fault however 2 users on site regulary appear to be affected by this.
I have reviewed the logs, I might be missing something but I cannot see anything obvious at this point.

Cheers
0
 
QlemoBatchelor, Developer and EE Topic AdvisorCommented:
GRE is troublesome if NAT is in the way, because it is an own protocol without ports. NATting firewalls need special logic to be able to map GRE connections to multiple servers and/or clients. Usually there is no issue if only one client connects to exactly one internal server, but other than that - sporadic failures.
If it is that way, you can't do anything but to see if there is a new router/firewall firmware available. Or switch to a different VPN type.
0
 
Nolan GustavoAuthor Commented:
Switched to different VPN type in the end (-:
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Ultimate Tool Kit for Technology Solution Provider

Broken down into practical pointers and step-by-step instructions, the IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy now.

  • 4
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now