Re: Dropped Connections

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

I'm suspicious of that Linksys. How old is it? Is the firmware current? I'm not at all sure my suspicion is rational, though: Both the VPN protocol and the RDP protocol are encrypted. Neither, however, loads the router--the VPN is unencrypted by the server itself, and RDP by the end-point client machine. It can be quite difficult to get accurate information from Nat/Router vendors about how many sessions of a given protocol their devices can actually handle--but I've used both Linksys and other vendors similar devices with at least triple the loads you are talking about.

I guess the source of my feeling here is that I know of nothing in the ISA/Windows Server/Remote Desktop Client axis that would cause the symptom you are seeing.

You could easily test the equivalent scenario within the ISA--create VPN sessions from two workstations to the server, and RDP to two more workstations--assuming you can come up with that many workstations.

It's a little harder, I guess to make this test through the ISA Server--that would take at a minimum some re-cabling to connect a couple of machines via the 4-port switch that is part of the router--and even then you don't have a "pure" test--we think of the switch functionality as being solid and independent of the router functionality, but is it?

A better test would be to substitute a different router, of course.

I don't think I have logic on my side, unfortunately--as far as I can see, adding the RDP protocol within the VPN doesn't change the load/effort required by the router.

If ISA were dropping the session because of some issue with a rule, I'd think this would be logged--Jim Harrison would know far more about that than I do.
--

"Johnsco" <Johnsco@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message news:8FB5887A-9FBC-42F5-B1B3-FED595D81CD9@xxxxxxxxxxxxxxxx
Thanks for the response..
Each user is using seperate credentials and are part of a VPN users group
setup in Active Directory. For example:
First Client is username: john with password: x
Second Client is username: james with password: xx
both of these users are members of a VPN user group.
When I monitor the VPN connections in ISA I can see both of these users
logged in with seperate IP addresses. The problems show up when both clients
try to use Remote Desktop to two seperate computers inside the network. One
client or the other gets disconnected.

"Johnsco" wrote:

I am running ISA Server 2004 SP3 on a box with Win 2K3 SP2. I have the VPN
remote enabled and have allowed 9 clients as a maximum number. I have setup
VPN network with Static IP's in a range of 10 IP address. I have PPTP and
L2TP/IPSEC protocol enabled.
The Issue:
Client one can connect through the VPN tunnel then use Remote Desktop to
work on a computer inside the firewall.
Client two can connect through the VPN tunnel (when I monitor sessions I can
see both VPN clients are connected with two different IP addresses) HOWEVER,
when client two uses Remote Desktop to work on a computer inside the
firewall...
The connection on Client one is DROPPED.
visa versa if Client one connects back on then Remote Desktop to a computer
it disconnects Client two.
Summary; Both Client one and two can connect through the VPN tunnel but only
one of the other can Remote Desktop to a computer on the network.
Looking for some directions.
Thanks in Advance.

.

Quantcast