Re: VPN and DNS

---

• From: "Bastiaan" <bastiaan@xxxxxxxxxxxxxxxxxxxx>
• Date: Wed, 17 May 2006 13:47:12 +0200

---

Please help,

Despite the fac that I keep reading books and search the net to leanr as
much as I can, I can't find the right setup.
In a previoud post Kevin wrote to disable the internal port, which I did.
Now I have to go to the data center to get access again because I am no
longer able to use remote desktop. My Dell ERA/O doesn not starts its remote
screen either.
There is also no followup on my second posting.

Can anybody guide me trough to get my machine in a decent working state????

Thanks a lot!

Bastiaan




"Bastiaan" <bastiaan@xxxxxxxxxxxxxxxxxxxx> wrote in message
news:126hahaidudbr73@xxxxxxxxxxxxxxxxxxxxx

Hi Kevin,

Thanks for the remarks, please let me try to explain a bit what I try to
do here.

We had a SBS 2003 box in the office, since we are on the road most of the
time we placed the server in a datacentre for more security and speed.

Now it is running WSRV2003R2 with Exchange 2003 (for testing and learning
at the moment).
In the datacenter it has an external NIC and a Remote Access system (DELL
ERA/O)
I am using an internal domain.local and several external domain names for
the websites (Hostheaders)

Purpose: run our exchange server for emails, run our (streaming)websites
/FTP
Store remote/redirected "My Documents" folders etc.

When we are in the office our Router (Draytek 2900V) can esteblish a VPN
connection to connect LAN to LAN / SERVER.
On the road we use VPN to synchronise folders.

As far as I understood, DNS and Exchange need an internal network address
to function?
IF I disable the internal NIC, I cannot connect remotely (Remote Desktop),
and Exchange SMTP mail does not get send.
Remote server admin works, websites work etc.

I have the Gateway set to my ISP on the external NIC. DNS points to
127.0.0.1

Hopes this shines some light :-)

PS what is a APIPA number?





"Kevin D. Goodknecht Sr. [MVP]" <admin@xxxxxxxxxxxxxx> wrote in message
news:eL$lk$CeGHA.1436@xxxxxxxxxxxxxxxxxxxxxxx

Bastiaan wrote:

I have just moved our WinServ2003 externally.
It has the WAN adapter @85.12.17.104, the internal LAN adapter is
active but not connected @192.168.0.1.

If this adapter is not connected to a Network, you should disable it.

Now I try to use VPN for remote computers.

I can connect without problems and get an automatic IP 169.254.x x on
the clients.
When I just installed everything it worked, but now 24hrs later it
can't resolve.

Can't resolve what?

I have added A records (169.254.166.177) to the DNS settings

Why? There is no guarantee that the VPN server will get the same address
the
next time RRAS starts.

Can anybody hint me what is wrong here?

Assuming you want access to more than just the VPN server one problem is
the
APIPA number.
Another problem is the ISP's DNS on the internal adapter, remove that DNS
address.

(I am new to the WinServ2003R2 coming from SBS2003)

SBS can automatically configure itself for RAS and multi-homing, which
I'm
not sure Win2k3R2 can do, and I know Win2k3 cannot do.
What is the purpose of this VPN server?
Is this for remote clients to be able to access the rest of your network?
If it is, how is this going to work if the LAN adapter is not connected?

Windows IP Configuration

Host Name . . . . . . . . . . . . : server
Primary Dns Suffix . . . . . . . : ZebraFilm.local
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : Yes
WINS Proxy Enabled. . . . . . . . : Yes
DNS Suffix Search List. . . . . . : ZebraFilm.local

Ethernet adapter WAN:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit
Ethernet Physical Address. . . . . . . . . : 00-0B-DB-93-61-FB
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 85.12.17.104
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 85.12.17.1
DNS Servers . . . . . . . . . . . : 127.0.0.1

Ethernet adapter LAN:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit
Ethernet #2
Physical Address. . . . . . . . . : 00-0B-DB-93-61-FC
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.0.1
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . :
DNS Servers . . . . . . . . . . . : 192.168.0.1

85.12.17.104<---------------REMOVE!

PPP adapter RAS Server (Dial In) Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : WAN (PPP/SLIP) Interface
Physical Address. . . . . . . . . : 00-53-45-00-00-00
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Autoconfiguration IP Address. . . : 169.254.166.177
Subnet Mask . . . . . . . . . . . : 255.255.255.255
Default Gateway . . . . . . . . . :

PPP adapter RAC Connection:<------------------------What is this
connected
to?

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : WAN (PPP/SLIP) Interface
Physical Address. . . . . . . . . : 00-53-45-00-00-00
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.234.235
Subnet Mask . . . . . . . . . . . : 255.255.255.255
Default Gateway . . . . . . . . . :
NetBIOS over Tcpip. . . . . . . . : Disabled

C:\Documents and Settings\Administrator>

--
Best regards,
Kevin D. Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
http://support.wftx.us/
https://secure.lsaol.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
===================================

.

---

• Follow-Ups:
  • Re: VPN and DNS
    • From: Kevin D. Goodknecht Sr. [MVP]

• References:
  • VPN and DNS
    • From: Bastiaan
  • Re: VPN and DNS
    • From: Kevin D. Goodknecht Sr. [MVP]
  • Re: VPN and DNS
    • From: Bastiaan

• Prev by Date: Re: DNS response for non-fqdn domain
• Next by Date: Re: PTR records in the reverse lookup zones
• Previous by thread: Re: VPN and DNS
• Next by thread: Re: VPN and DNS
• Index(es):
  • Date
  • Thread

---

Relevant Pages RE: Problems with shares over remote connection ... The problem occurs on all shares on the SBS ... The problem occurs on 6 of 6 remote clients that I have tried ... Connection-specific DNS Suffix. ... PPP adapter Connect to Small Business Server: ... (microsoft.public.windows.server.sbs) Re: ISA 2004 - Microsoft Firewall Event ID 14147 ... Are you running any kind of PPPoE software on your server? ... Connection-specific DNS Suffix. ... Ethernet adapter 3COM NIC for BellSouth DSL: ... > with the network element to which this adapter belongs. ... (microsoft.public.windows.server.sbs) Re: VPN and DNS ... Selected the Loopback adapter to obtain DHCP, ... VPN assigns an IP 192.168.0.5 from server IP 192.168.0.2 ... Connection-specific DNS Suffix. ... cause a routing issue when connecting from a network using that subnet. ... (microsoft.public.windows.server.dns) Re: VPN and DNS ... run our exchange server for emails, ... IF I disable the internal NIC, I cannot connect remotely, ... It has the WAN adapter @85.12.17.104, ... Connection-specific DNS Suffix. ... (microsoft.public.windows.server.dns) Re: Workstations cant see servers that the DNS/DHCP server can ... Between the remote site and this router, ... Windows IP Configuration ... Connection-specific DNS Suffix. ... PPP adapter RAS Server Interface: ... (microsoft.public.windows.server.networking)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(10)