Announcement

Collapse
No announcement yet.

My VPN is killing me

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • My VPN is killing me

    Ok, this is driving me mental with rage, anger and such.
    I have an SBS 2011 domain machine which has RRAS installed and configured.
    I can get any client (Mac, iPad, Win 7, Win XP) to connect and authenticate to the VPN. When connected, clients can ping any network resource.

    Clients used to be able to gain access to file shares by going to \\SERVERNAME.domain.local however for some unknown reason, can no longer do this.

    I am baffled., Dunno where to start either.

    Ive tried setting the DNS server in ip4 config for the network adapters, I've tried setting WINS settings, gateways and such until im blue in the face.

    Anyone able to help out??

  • #2
    Re: My VPN is killing me

    On the client computer do you have the domain field filled in with the appropriate domain? or just user and password.

    Can you test nslookup after connected to VPN? are the results as expected?
    "...if I turn out to be particularly clear, you've probably misunderstood what I've said” - Alan Greenspan

    Comment


    • #3
      Re: My VPN is killing me

      On the client computer do you have the domain field filled in with the appropriate domain? or just user and password.
      Meaning.....in the VPN dialer connection boxes.
      "...if I turn out to be particularly clear, you've probably misunderstood what I've said” - Alan Greenspan

      Comment


      • #4
        Re: My VPN is killing me

        Hi and thanks for helping out.

        I will have a quick check when im on another network. But it does have the domain.local information in the connection pane.

        Get back to you in a bit...

        Comment


        • #5
          Re: My VPN is killing me

          Originally posted by mattyb_53 View Post
          Hi and thanks for helping out.

          I will have a quick check when im on another network. But it does have the domain.local information in the connection pane.

          Get back to you in a bit...
          Try just domain, without the ".local"
          "...if I turn out to be particularly clear, you've probably misunderstood what I've said” - Alan Greenspan

          Comment


          • #6
            Re: My VPN is killing me

            Hm. Looks like this may be related to some adapter settings. For some reason, ip config shows the following:



            Windows IP Configuration

            Host Name . . . . . . . . . . . . : Mbetros-HP
            Primary Dns Suffix . . . . . . . :
            Node Type . . . . . . . . . . . . : Broadcast
            IP Routing Enabled. . . . . . . . : No
            WINS Proxy Enabled. . . . . . . . : No
            DNS Suffix Search List. . . . . . : gba.local

            PPP adapter Betros VPN Connection:

            Connection-specific DNS Suffix . : gba.local
            Description . . . . . . . . . . . : Betros VPN Connection
            Physical Address. . . . . . . . . :
            DHCP Enabled. . . . . . . . . . . : No
            Autoconfiguration Enabled . . . . : Yes
            IPv4 Address. . . . . . . . . . . : 192.168.1.18(Preferred)
            Subnet Mask . . . . . . . . . . . : 255.255.255.255
            Default Gateway . . . . . . . . . : 0.0.0.0
            DNS Servers . . . . . . . . . . . : 192.168.1.10
            NetBIOS over Tcpip. . . . . . . . : Enabled

            Wireless LAN adapter Wireless Network Connection 2:

            Media State . . . . . . . . . . . : Media disconnected
            Connection-specific DNS Suffix . :
            Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
            Physical Address. . . . . . . . . : E0-2A-82-14-2B-A4
            DHCP Enabled. . . . . . . . . . . : Yes
            Autoconfiguration Enabled . . . . : Yes

            Wireless LAN adapter Wireless Network Connection:

            Connection-specific DNS Suffix . :
            Description . . . . . . . . . . . : Ralink RT3090 802.11b/g/n WiFi Adapter
            Physical Address. . . . . . . . . : E0-2A-82-14-2B-A5
            DHCP Enabled. . . . . . . . . . . : Yes
            Autoconfiguration Enabled . . . . : Yes
            IPv4 Address. . . . . . . . . . . : 192.168.1.6(Preferred)
            Subnet Mask . . . . . . . . . . . : 255.255.255.0
            Lease Obtained. . . . . . . . . . : Wednesday, 7 September 2011 8:00:59 PM
            Lease Expires . . . . . . . . . . : Thursday, 8 September 2011 8:02:03 PM
            Default Gateway . . . . . . . . . : 192.168.1.254
            192.168.1.1
            DHCP Server . . . . . . . . . . . : 192.168.1.1
            DNS Servers . . . . . . . . . . . : 192.168.1.10
            192.168.1.1
            NetBIOS over Tcpip. . . . . . . . : Enabled

            Tunnel adapter Local Area Connection* 12:

            Media State . . . . . . . . . . . : Media disconnected
            Connection-specific DNS Suffix . :
            Description . . . . . . . . . . . : Microsoft 6to4 Adapter
            Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
            DHCP Enabled. . . . . . . . . . . : No
            Autoconfiguration Enabled . . . . : Yes

            Tunnel adapter isatap.gba.local:

            Media State . . . . . . . . . . . : Media disconnected
            Connection-specific DNS Suffix . : gba.local
            Description . . . . . . . . . . . : Microsoft ISATAP Adapter
            Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
            DHCP Enabled. . . . . . . . . . . : No
            Autoconfiguration Enabled . . . . : Yes

            Tunnel adapter isatap.{64A32C6F-2AFA-4567-9080-E90A37853C02}:

            Media State . . . . . . . . . . . : Media disconnected
            Connection-specific DNS Suffix . :
            Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
            Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
            DHCP Enabled. . . . . . . . . . . : No
            Autoconfiguration Enabled . . . . : Yes

            Tunnel adapter isatap.{46D7FDA5-88E7-49CB-B710-AD38847E9A57}:

            Media State . . . . . . . . . . . : Media disconnected
            Connection-specific DNS Suffix . :
            Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
            Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
            DHCP Enabled. . . . . . . . . . . : No
            Autoconfiguration Enabled . . . . : Yes

            Tunnel adapter Local Area Connection* 13:

            Media State . . . . . . . . . . . : Media disconnected
            Connection-specific DNS Suffix . :
            Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
            Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
            DHCP Enabled. . . . . . . . . . . : No
            Autoconfiguration Enabled . . . . : Yes

            Comment


            • #7
              Re: My VPN is killing me

              Ive noticed that moving from one wireless network to the other, where the subnets and gateways are the same (on windows 7) I am unable to get an internet connection unless I specifiy both in the DNS settings.

              Strange i know.

              But, when I connect to VPN, does it automatically assign these subnet and gateway settings through windows 7 or SBS RRAS?

              Comment


              • #8
                Re: My VPN is killing me

                Sometimes I have found that putting the remote DNS domain in the advanced IPv4 TCP settings for DNS helps make the connection. See attachment
                Attached Files
                TIA

                Steven Teiger [SBS-MVP(2003-2009)]
                http://www.wintra.co.il/
                sigpic
                I’m honoured to have been selected for the SMB 150 list for 2013. This is the third time in succession (no logo available for 2011) that I have been honoured with this award.

                We don’t stop playing because we grow old, we grow old because we stop playing.

                Comment


                • #9
                  Re: My VPN is killing me

                  Tried that. No workies!

                  Tracert and NS Lookup not working either. but Ping does. What the?

                  Comment


                  • #10
                    Re: My VPN is killing me

                    I noticed that the remote and local networks are both 192.168.1.xxx
                    Is that right?
                    It will never work, you need to change one or the other to 192.168.2.xxx or similar. Or even 10.0.0.xxx

                    I would change the remote (non-sbs) network of course.........
                    "...if I turn out to be particularly clear, you've probably misunderstood what I've said” - Alan Greenspan

                    Comment


                    • #11
                      Re: My VPN is killing me

                      Originally posted by mattyb_53 View Post
                      Ive noticed that moving from one wireless network to the other, where the subnets and gateways are the same (on windows 7) I am unable to get an internet connection unless I specifiy both in the DNS settings.

                      Strange i know.

                      But, when I connect to VPN, does it automatically assign these subnet and gateway settings through windows 7 or SBS RRAS?
                      one issue at a time.......
                      "...if I turn out to be particularly clear, you've probably misunderstood what I've said” - Alan Greenspan

                      Comment


                      • #12
                        Re: My VPN is killing me

                        not sure if it's still the same issue.

                        I had a clien recently, who was using 192.168.1.x at home, and at work. THere was no way we were changing the network for one guy, and he was refusing to change his home network.

                        It ended up with me... I'm the Fixer.
                        vpn connected fine, and everything worked fine numerically.. but using hostnames, it just crapped out when we tried to use dns.

                        once we cut out the vpn, it all worked again.

                        a close look at the dhcp config, showed me that when connecvting to the vpn, we got 192.168.1.6 as the DNS server.

                        I noticed that the client's standard internal IP Address was 192.168.1.8 and was also assigned by DHCP on the home network. This made me think.

                        So, I dropped the vpn connection, and sent a ping round to 192.168.1.6

                        lo and behold, it replied.

                        It turned out, when we connected the vpn, and tried to reach the dns server on 192.168.1.6 it was routing to the local host, because that had a lower metric.


                        So we changed the dhcp scope on the home network.. which sorted it


                        essentially, what I'm trying to say is// review all your settings clsoely for conflicts
                        Please do show your appreciation to those who assist you by leaving Rep Point https://www.petri.com/forums/core/im.../icon_beer.gif

                        Comment


                        • #13
                          Re: My VPN is killing me

                          Solved!

                          Hi all, sorry I havent replied. Been busy at work.

                          It appears that the installation of Symantec was the main cause for our inability to connect. We performed the following steps:

                          1. Check Pings - we were able to, under the same subnet, ping all machines. We could connect perfectly.
                          2. We changed the subnet of the home network, and instantly gained access to some server shares
                          3. After uninstalling Symantec we had full functionality and complete access to everything - at almost double the speed.

                          We've now reinstalled only the AntiVirus component of Symantec.

                          It all works fine.

                          Looks like Symantic firewall was the issue all along.

                          Comment

                          Working...
                          X