Re: can you identify if this is a dns issue..
From: Ace Fekay [MVP] (PleaseSubstituteMyActualFirstName&LastNameHere_at_hotmail.com)
Date: 08/04/04
- Next message: Kevin D. Goodknecht Sr. [MVP]: "Re: DNS on w2k - Internal Only"
- Previous message: Kevin D. Goodknecht Sr. [MVP]: "Re: DNS issues"
- In reply to: Calvin C.: "Re: can you identify if this is a dns issue.."
- Messages sorted by: [ date ] [ thread ]
Date: Wed, 4 Aug 2004 18:06:13 -0400
In news:OrtTszleEHA.2532@TK2MSFTNGP09.phx.gbl,
Calvin C. <CChang@mjlm.com> made a post then I commented below
> Thanks Ace and Lee,
> Yes, we're using Cisco VPN client and Cisco router (2600 gateway)
> No personal firewall, ICF, Proxy or ISA. Not sure about IP access
> rules on router or allowing routing from VPN client but I guess not.
> (It's our vendor to configure the router and VPN, but cannot figure
> out the problem either)
>
> I've sent my VPN config to Cisco tech, and he said it's fine so I try
> to find a clue from MS side.
>
> THanks again.
I still think it's something on their end, but I'm not trying to pass the
buck. I'm just saying that based on your description. You said that you can
ping by IP, but you cannot connect by IP, FQDN or computer name. Smply
stating that connecting by IP is the base method and easiest method to test
connectivity that does not utilize DNS. IF you cannot connect by IP, but can
ping it, then its telling me there's something blocking the connection,
meaning something is blocking the ports required to make a connection,
mapped drive, or whatever you;re trying to do, something such as a firewall
rule, an IP access list or even ICF. DNS from your description, does not
seem to be a factor here.
Maybe it's NAT. If mutliple internal NAT subnets are routing between each
other on a Windows NAT/RAS server, then I've seen issues with H.323 support,
since that squashes the PDUs required for LDAP communication, but this
applies to AD communication. In that case, we would kill H.323 support. But
since you are using a Cisco connection, and you state that you are not using
a Windows RAS server for VPN connectivity, then it seems to point back to
the Cisco VPN service.
Do you have multiple internal NAT subnets? If using private IP addressing,
what is offering NAT, the Cisco router or Windows?
-- Regards, Ace Please direct all replies ONLY to the Microsoft public newsgroups so all can benefit. This posting is provided "AS-IS" with no warranties or guarantees and confers no rights. Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP Microsoft Windows MVP - Windows Server - Directory Services Security Is Like An Onion, It Has Layers HAM AND EGGS: A day's work for a chicken; A lifetime commitment for a pig. -- =================================
- Next message: Kevin D. Goodknecht Sr. [MVP]: "Re: DNS on w2k - Internal Only"
- Previous message: Kevin D. Goodknecht Sr. [MVP]: "Re: DNS issues"
- In reply to: Calvin C.: "Re: can you identify if this is a dns issue.."
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
