Re: Multihomed server 2000

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

In news:OdBLBL3UGHA.4436@xxxxxxxxxxxxxxxxxxxx,
DPM <dm@xxxxxxxx> stated, which I commented on below:
I finally resolved this by enabling tracing and pouring over the
logs. Even though I used Windows authentication, I expected the RRAS
server to use the local user list, but because the server is a domain
member it went back to the DC for authentication, and the user there
did not have dialin permission. Why that got reported as an
authentication timeout only Microsoft knows, I guess.

ISA reported it as such because it couldn't authenticate the user account,
however, if you look in the security Event logs, you should see the failure
attempt.


Last item, if you're still reading: I set the RRAS server to assign
IPs from a static pool (192.168.100.x). I added a static route
(0.0.0.0/0.0.0.0) to the VPN NIC, and now I can get to the internet
through the VPN. But I can't get to other computers in the
192.168.0.x net, other than the server itself (192.168.0.5) and the
default gateway (192.168.0.1). I can ping these, but no others.
Also, with the VPN established I can ping 192.168.200.200 (the client
NIC) but not the assigned VPN address (192.168.100.103, say).

I think you mean you cannot use the single NetBIOS name to ping or connect
to. Try connecting via FQDN. If you can do that, then it appears you'll need
WINS to provide NetBIOS name resolution across subnets, which is not
possible by default.


I think I don't clearly understand how packets get routed: if my LAN
is 192.168.0.x, my VPN adapter 192.168.200.x and the VPN address
192.168.100.x, how do I set the routes so that a client attached
through the VPN can see all the resources on the LAN net?

WINS, if you mean by NetBIOS names.


Thanks for bearing with me on this journey.

Regards,
Dean

No problem, Dean.

Ace


.

Relevant Pages

  • RE: VPN
    ... possible to verify the identity of the server". ... Authentication, the Internet Authentication Service need to be ... On the VPN server, click Start, click Run, type rrasmgmt.msc, and then ... Windows Authentication, under Accounting Provider, click to select Windows ...
    (microsoft.public.windows.server.sbs)
  • Re: VPN Error 733, Event Log Error 20050 with SBS 2003 - revisited
    ... the VPN from within the LAN with anti-virus ... It seems that I need to look at repairing the whole of RRAS. ... disable or uninstall any antivirus software on the RRAS Server. ... check if there are some firewall between remote VPN client and RRAS server. ...
    (microsoft.public.windows.server.sbs)
  • Re: VPN and LAN conflicts
    ... After connecting to the RRAS, the server should have PPTP IP information. ... Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net ... > connections, applying computer settings and applying your personal settings) ...
    (microsoft.public.win2000.ras_routing)
  • Re: Bizzare ISA2004 VPN Issues, Please help
    ... Rebooted the server. ... I then manually opened RRAS, configured it to accept PPTP VPN connections. ...
    (microsoft.public.isa)
  • Re: RRAS on W2K3
    ... If I connect to the ISP using the RRAS ... Not much connection here. ... the same server? ... Networking, Internet, Routing, VPN Troubleshooting on ...
    (microsoft.public.windows.server.networking)