Re: ISA 2004, remote desktop issue to internal clients

---

• From: James Wright <CMCGroup@xxxxxxxxxxxxxx>
• Date: Sun, 26 Mar 2006 15:07:00 -0800

---

Yes, that rule is fine. VPN clients can access everything on the
network--even RD to our file server (10.0.0.251).. but cannnot RD to this XP
Pro box (10.0.0.64).
--
-James Wright



"Kevin Longley" wrote:

Have you created a rule that allows vpn clients access to the internal
network?

"James Wright" <CMCGroup@xxxxxxxxxxxxxx> wrote in message
news:B620B705-6FAF-4757-90CE-C62ADAEC5602@xxxxxxxxxxxxxxxx

I have a SBS 2003 server, XP Pro SP2 client (internal network), and ISA
2004
(acting as VPN and firewall) with a T1 for the WAN interface.

My issue:
Domain Users and Domains Admins CAN while VPNed in:
Open a remote desktop session (RDP 3389) with the SBS 2003 box just fine.
10.0.0.251

BUT-
Domain Users and Domain Admins cannot open a RD session with a XP Pro SP2
box on the internal network. Domain Users and Domain Admins can get to
this
computer just fine when connected to the LAN (just not with VPN).
10.0.0.64

Things I've already done:
Remote Desktop is enabled on my XP Pro client
Both the above user groups are added for permissions
Tried to connect to both host and IP address
Tried adding the client IP to the host file

I check the logs on the ISA 2004 server, and I see the VPN client session
initiates a connection for RDP 3389 with the IP address of the XP Pro box.
But, it will just time out and close the connection. I don't see any
traffic
logs that point to a rule denying the service.

Why won't RD work?

-James Wright

.

---

• Follow-Ups:
  • Re: ISA 2004, remote desktop issue to internal clients
    • From: Kevin Longley

• References:
  • Re: ISA 2004, remote desktop issue to internal clients
    • From: Kevin Longley

• Prev by Date: Re: publish sql server to dmz
• Next by Date: Slow Down when copying files from ISA server
• Previous by thread: Re: ISA 2004, remote desktop issue to internal clients
• Next by thread: Re: ISA 2004, remote desktop issue to internal clients
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: ISA 2004, remote desktop issue to internal clients ... Are you running the xp firewall, if so turn it off and then test access. ... network--even RD to our file server.. ... Domain Users and Domain Admins cannot open a RD session with a XP Pro ... (microsoft.public.isa) Re: ISA 2004, remote desktop issue to internal clients ... Try also checking the routing table from the server to the VPN clients' IP. ... If the connection is initiated and there is no response, ... Domain Users and Domain Admins cannot open a RD session with a XP Pro SP2 ... initiates a connection for RDP 3389 with the IP address of the XP Pro box. ... (microsoft.public.isa) Re: ISA 2004, remote desktop issue to internal clients ... Have you created a rule that allows vpn clients access to the internal ... Domain Users and Domain Admins cannot open a RD session with a XP Pro SP2 ... box on the internal network. ... it will just time out and close the connection. ... (microsoft.public.isa) Re: make one group a member of another ... one would do this on the Pro machine and there add the ... > and add domain users to the administrators local group. ... You want to avoid making users local administrators ... >> windows 2000 server on certain PCs a member of the local admin group of ... (microsoft.public.win2000.security) Re: Logon Locally to XP on Domain ... > I have a domain set up with another PC running XP Pro. ... > allow all domain users to login to the XP computer? ... If you successfully joined the XP Pro computer to the domain, ... any local or domain policies that prevent domain users from logging on ... (microsoft.public.win2000.active_directory)

---

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

www.tech-archive.net  > Archive  > ISA  > microsoft.public.isa  > 2006-03