Exchange User
asked on
Unable to RDP on VPN
Hi All,
I opened a similar question last month. I have more information now. The issue is that when an RDP request comes over the VPN, our DCs are rejecting it but not all the time. It works sometimes and sometimes it doesnt. We have 2008 R2 domain and forest functional level and all DCs running 2008 R2 in 3 sites. Any ideas ?
The network team used wire shark to test the packets during RDP over VPN. Thats how I know that it is being rejected on the DC level.
I opened a similar question last month. I have more information now. The issue is that when an RDP request comes over the VPN, our DCs are rejecting it but not all the time. It works sometimes and sometimes it doesnt. We have 2008 R2 domain and forest functional level and all DCs running 2008 R2 in 3 sites. Any ideas ?
The network team used wire shark to test the packets during RDP over VPN. Thats how I know that it is being rejected on the DC level.
Please refer if still you need any info
https://www.experts-exchange.com/questions/24255251/RDP-over-VPN-disconnects-constantly-RDP-without-VPN-works-fine.html
https://www.experts-exchange.com/questions/24255251/RDP-over-VPN-disconnects-constantly-RDP-without-VPN-works-fine.html
Can you be more precise about "rejecting"? Do the clients get an active RST (reset) of the connection out of the blue - which indicates a denial - or is it more of a timeout?
MTU/DF issues usually lead to hanging RDP sessions (either on connect or while using the session), so I would not count that as "rejected".
MTU/DF issues usually lead to hanging RDP sessions (either on connect or while using the session), so I would not count that as "rejected".
ASKER
Qlemo,
When you are connected to the VPN and try to RDP on any server, you just cannot even get to the login screen. It probably says connection time out. Problem is that I cannot reproduce it whenever I want because this issue is intermittent.
aditya,
I will be meeting the firewall guys today but just want to be sure if there would be anything on the DC end. But all other services are working fine which are dependent on the DC so I am not sure.
When you are connected to the VPN and try to RDP on any server, you just cannot even get to the login screen. It probably says connection time out. Problem is that I cannot reproduce it whenever I want because this issue is intermittent.
aditya,
I will be meeting the firewall guys today but just want to be sure if there would be anything on the DC end. But all other services are working fine which are dependent on the DC so I am not sure.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thats what I thought. But my networking guy ran a wireshark network packet analyzer report and he came to me saying that the RDP request is being dropped by the domain controller ?
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Run tracert and see if the interface assigned for managing vpn access points is destined 'any' or 'named group'
I forgot to ask did you check the replication is going fine?
ASKER
Yes replication is fine, PDC is working fine. I just ran a dcdiag /v /e and couldnt find any issues and also with dcdiag /test:dns /v /e
ASKER
Qlemo,
I'll have your answers by Monday probably :)
I'll have your answers by Monday probably :)
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Find out whether tcp request is only one way or other?
Firewall policies check ?