[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

Hyper-V 2012 and VPN on 2012 R2 breaking virtual switch

Posted on 2016-11-14
9
Medium Priority
?
155 Views
Last Modified: 2016-11-15
Good Afternoon,

I have a client that uses VPN on a 2012 R2 server which is a VM running on a Hyper-V 2012 R2 server.  For some reason it will randomly stop working and basically time out while connecting to VPN and the only fix is to completely remove the External Virtual Switch and then Create a new one from scratch which basically means I need to be onsite to do it since it disconnects my remote session when I remove the virtual switch.

The bigger problem is that we now have a client that wants VPN setup with the same 2012 R2 Hyper-V and 2012 R2 server setup but they aren't local, so I need a fix for this before I set them up with VPN since I won't be able to get onsite.

If any of you have advice on the matter that would be great!

Thanks,
Adam
0
Comment
Question by:blue92lx
  • 5
  • 4
9 Comments
 
LVL 40

Expert Comment

by:Philip Elder
ID: 41886600
Where is RRAS installed?
0
 

Author Comment

by:blue92lx
ID: 41886792
It's on a Server that is being used for files, PC Law, and Printers and is a Virtual Machine.  No roles have been installed on the server, however, except RRAS
0
 
LVL 40

Expert Comment

by:Philip Elder
ID: 41886804
So RRAS is installed in a VM.

Does the host have Broadcom physical NIC ports? If yes, has VMQ been disabled in the driver for all ports? If not, do so and that should help with the network issues.
0
Making Bulk Changes to Active Directory

Watch this video to see how easy it is to make mass changes to Active Directory from an external text file without using complicated scripts.

 

Author Comment

by:blue92lx
ID: 41886815
It has HP Ethernet 1Gb 2-port 332i Adapter installed on the host server.  In the physical LAN drivers VMQ is turned off, on the Hyper-V team the VMQ is turned on.  I'm guessing the Hyper-V Team "NIC" it should be turned off as well correct?  Or does it only matter on the physical hardware drivers.
0
 
LVL 40

Expert Comment

by:Philip Elder
ID: 41886853
VMQ needs to be turned off in the adapter's properties (driver). The 332i is a Broadcom chip. The OS settings do not need to be touched.
0
 

Author Comment

by:blue92lx
ID: 41886862
OK then yeah it's turned off for both 332i units in the driver properties.
0
 
LVL 40

Accepted Solution

by:
Philip Elder earned 2000 total points
ID: 41886874
Most edge devices have a one or two user freebie license for SSL VPN included. Maybe that would be a better way?
0
 

Author Comment

by:blue92lx
ID: 41887113
Yeah we use Ubiquiti routers so I'll give that a shot.  It's still a bit concerning that this doesn't work through the server due to the NiC's in some way, or due to Hyper-V.  Whichever is the issue.   I feel like using the router as the solution for VPN is not actually fixing the real issue.  It bugs me but I suppose if that works then it works.
0
 
LVL 40

Expert Comment

by:Philip Elder
ID: 41887138
We've not used RRAS for VPN connections for at least ten years. PPTP and L2TP are a pain to use at the best of times and have huge overhead.
0

Featured Post

 The Evil-ution of Network Security Threats

What are the hacks that forever changed the security industry? To answer that question, we created an exciting new eBook that takes you on a trip through hacking history. It explores the top hacks from the 80s to 2010s, why they mattered, and how the security industry responded.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Ransomware is a malware that is again in the list of security  concerns. Not only for companies, but also for Government security and  even at personal use. IT departments should be aware and have the right  knowledge to how to fight it.
In this article, the configuration steps in Zabbix to monitor devices via SNMP will be discussed with some real examples on Cisco Router/Switch, Catalyst Switch, NAS Synology device.
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…
Suggested Courses

872 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question