Re: Server doesn't see share on remote machine connected via VPN

Thanks David! You were right; the local machine is running Windows XP which
used Windows built in firewall by default on the VPN connection. I turned
the firewall off and the synchronization worked perfectly.

Now all I have to do is figure out how to find the firewall's "trusted
list".


"David W. Fenton" <XXXusenet@xxxxxxxxxxxxxxxxxxx> wrote in message
news:Xns97C775FF78294f99a49ed1d0c49c5bbb2@xxxxxxxxxxxx
"Tom Stoddard" <tstoddard@xxxxxxxxxxxxxxxx> wrote in
news:OU7CHogeGHA.5040@xxxxxxxxxxxxxxxxxxxx:

I have indirect synchronization set up on a server which I can
connect to via a VPN. When I initiate an indirect synchronization
from the remote machine I can see a message being dropped in the
dropbox on the folder but when the synchronizer on the server
tries to send data back to the remote machine it fails because it
doesn't find the remote machine.

Is this happening because of the way VPN works? Is there something
I can do to change this behavior?

There are a number of issues, but let me repeat something I've said
before: most of the problems getting indirect replication working
are with layers that are outside Jet, and most commonly with
networking issues. I'm lucky in that I have a decade of networking
and NT administration experience under my belt, so I don't have too
many problems. But most people trying indirect replication don't
have that experience and run into problems.

That said, the possible causes:

1. a firewall somewhere is blocking access.

2. NETBIOS over TCP/IP may be turned off. See if you can ping the IP
address of the remote machine. With a VPN there are probably 2
different IP address's that the remote machine could be known as.
Either one should be accessible.

The solution to #1 is to put the IP address of the remote machine in
the local firewall's trusted sites listing (however that's
accomplished with that particular firewall).

The solution to #2 is to put an entry for the machine in the HOSTS
file of the local machine that maps the machine name to both of its
IP addresses.

--
David W. Fenton http://www.dfenton.com/
usenet at dfenton dot com http://www.dfenton.com/DFA/


.

Relevant Pages

  • RE: Sandboxing
    ... the 3Com Embedded Firewall would be extremely useful and enabling (in ... your case) when you look at it in a VPN context. ... This security policy will accomplish quite a few things: ... During the Policy Server installation, ...
    (Focus-IDS)
  • Re: VPN Firewall for new webserver
    ... > I'm setting up a webserver at a colocation and I need to put a VPN ... You're not going to get a quality firewall for that amount, ... and D-Link makes a DI-804HV unit ... users access to the SQL server, let them do it through a VPN session. ...
    (comp.security.firewalls)
  • Re: Firewall Info/Recommendations?
    ... I would seriously consider an air-gap solution. ... Let me outline a few features that no other firewall can touch. ... Provide secure access without a VPN from any web browser (this greatly ... > manageable without much higher-level support if you want things like ...
    (comp.security.firewalls)
  • Re: [fw-wiz] Integrated IDS/IPS/Firewall (Cisco ASA and Juniper ISG)
    ... complexity and architectural inelegance of having 3-5 gateway security ... VPN) convinced me to eventually champion a migration to Symantec's SGS ... Nice balance of "default deny" at the firewall, ...
    (Firewall-Wizards)
  • Re: two winxp home machines, varied results
    ... >The only firewall I have on my machine *aside* from the Cisco VPN ... Please don't change "restrictAnonymoussam", only ... >Here is the IPCONFIG and BROWSTAT listings for each machine. ...
    (microsoft.public.windowsxp.network_web)
Loading