Re: problems connecting to Network Shares over VPN


Hello again,
We have a wired and wirelesss network in the office, however, the server
only has 1 NIC. How should I proceed with this?
I don't think I can disable IP v6 as this is a SBS Server and Exchange puts
up a major fuss is IP v6 is disabled.

Ho do I compare both VPN server and client routing tables?

"Bob Lin (MS-MVP)" wrote:

We have some configuration issues with this system. It seems to me the SBS
is multihomed computers with two NICs (wired and wireless). It is not
recommended. Also you may want to disable IPv6 on the server for
troubleshooting. You may compare both VPN server and client routing table to
see where the traffic will go.

--
Bob Lin, Microsoft-MVP, MCSE & CNE
Networking, Internet, Routing, VPN Troubleshooting on
http://www.ChicagoTech.net
How to Setup Windows, Network, VPN & Remote Access on
http://www.HowToNetworking.com


"Donny" <Donny@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:D3AD6D33-015B-4865-951B-783758AAE01B@xxxxxxxxxxxxxxxx
Here is the information from the server and also from the notebook. Sorry
for
the delay. They took it out of town for a day.

***From the server:

C:\Users\svradmin>nslookup adminassist
Server: UnKnown
Address: fe80::9691:b7f6:e3da:589f

Name: adminassist.company.local
Address: 192.168.2.36

C:\Users\svradmin>ping -a 192.168.2.36

Pinging 192.168.2.36 with 32 bytes of data:
Reply from 192.168.2.5: Destination host unreachable.
Reply from 192.168.2.5: Destination host unreachable.
Reply from 192.168.2.5: Destination host unreachable.
Reply from 192.168.2.5: Destination host unreachable.

Ping statistics for 192.168.2.36:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),

C:\Users\svradmin>

***From the Notebook off site with VPN connected.

C:\Windows\system32>ipconfig /all

Windows IP Configuration

Host Name . . . . . . . . . . . . : ADMINASSIST
Primary Dns Suffix . . . . . . . : company.local
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : company.local

PPP adapter Company VPN Connection:

Connection-specific DNS Suffix . : company.local
Description . . . . . . . . . . . : Company VPN Connection
Physical Address. . . . . . . . . :
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv4 Address. . . . . . . . . . . : 192.168.2.15(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.255
Default Gateway . . . . . . . . . : 0.0.0.0
DNS Servers . . . . . . . . . . . : 192.168.2.5
Primary WINS Server . . . . . . . : 192.168.2.5
NetBIOS over Tcpip. . . . . . . . : Enabled

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom 802.11b/g WLAN
Physical Address. . . . . . . . . : 00-1A-73-82-49-26
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . :
fe80::c5d:18d5:4104:1b19%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.113(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Thursday, September 03, 2009 6:39:42
PM
Lease Expires . . . . . . . . . . : Friday, September 04, 2009 6:39:42
PM
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 218110579
DHCPv6 Client DUID. . . . . . . . :
00-01-00-01-11-C0-B3-57-00-1B-24-81-B1-B

DNS Servers . . . . . . . . . . . : 192.168.0.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : NVIDIA nForce Networking Controller
Physical Address. . . . . . . . . : 00-1B-24-81-B1-B7
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . :
fe80::c464:32ad:ed1:9e1d%9(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.125(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Thursday, September 03, 2009 6:39:45
PM
Lease Expires . . . . . . . . . . : Friday, September 04, 2009 6:39:45
PM
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 234887972
DHCPv6 Client DUID. . . . . . . . :
00-01-00-01-11-C0-B3-57-00-1B-24-81-B1-B

DNS Servers . . . . . . . . . . . : 192.168.0.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection*:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Tun Miniport Adapter
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : company.local
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

C:\Windows\system32>


Microsoft Windows [Version 6.0.6002]
Copyright (c) 2006 Microsoft Corporation. All rights reserved.

C:\Users\stuart>net use s: \server12\data
s: has a remembered connection to \\server12\data. Do you
want to overwrite the remembered connection? (Y/N) [Y]:
System error 67 has occurred.

The network name cannot be found.


C:\Users\stuart.>ping server12

Pinging server12.company.local [192.168.2.5] with 32 bytes of data:
Reply from 192.168.2.5: bytes=32 time=23ms TTL=127
Reply from 192.168.2.5: bytes=32 time=23ms TTL=127
Reply from 192.168.2.5: bytes=32 time=23ms TTL=127
Reply from 192.168.2.5: bytes=32 time=22ms TTL=127

Ping statistics for 192.168.2.5:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 22ms, Maximum = 23ms, Average = 22ms

C:\Users\stuart>ping 192.168.2.5

Pinging 192.168.2.5 with 32 bytes of data:
Reply from 192.168.2.5: bytes=32 time=23ms TTL=127
Reply from 192.168.2.5: bytes=32 time=23ms TTL=127
Reply from 192.168.2.5: bytes=32 time=23ms TTL=127
Reply from 192.168.2.5: bytes=32 time=23ms TTL=127

Ping statistics for 192.168.2.5:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 23ms, Maximum = 23ms, Average = 23ms

C:\Users\stuart>net view server12
Shared resources at server12


Share name Type Used as Comment

-------------------------------------------------------------------------------
RedirectedFolders Disk [Offline Share]
The command completed successfully.

C:\Users\stuart>

"Bob Lin (MS-MVP)" wrote:

Sounds like name resolution issue. Can you ping -a 192.168.2.36? Also
post
back the result of VPN client ipconfig /all may help.

--
Bob Lin, Microsoft-MVP, MCSE & CNE
Networking, Internet, Routing, VPN Troubleshooting on
http://www.ChicagoTech.net
How to Setup Windows, Network, VPN & Remote Access on
http://www.HowToNetworking.com


"Donny" <Donny@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:FF5F602D-A4C5-4EAE-AACC-606F05EBA3F7@xxxxxxxxxxxxxxxx
I am logging in with the Domain username, not the local one. I think
that
this is a DNS issue but I don't know what I need to do to fix it. Here
is
some more information:
I have some more information on this. After I connect with VPN and i go
to
Network and Sharing center it says that my network is unathenticated.
My
VPN
IP address is 192.168.2.22
Going on the server 192.168.2.5 I found the following:

C:\Users\svradmin>ping adminassist

Pinging adminassist.epic.local [192.168.2.36] with 32 bytes of data:
Reply from 192.168.2.5: Destination host unreachable.

Ping statistics for 192.168.2.36:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

C:\Users\svradmin>ping 192.168.2.22

Pinging 192.168.2.22 with 32 bytes of data:
Reply from 192.168.2.22: bytes=32 time=23ms TTL=128

Ping statistics for 192.168.2.22:
Packets: Sent = 3, Received = 3, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 23ms, Maximum = 24ms, Average = 23ms

C:\Users\svradmin>tracert 192.168.2.22

Tracing route to ADMINASSIST [192.168.2.22]
over a maximum of 30 hops:

1 23 ms 24 ms 24 ms ADMINASSIST [192.168.2.22]

Trace complete.

C:\Users\svradmin>nslookup adminassist
Server: UnKnown
Address: fe20::9661:b7f6:e3da:559f

Name: adminassist.company.local
Address: 192.168.2.36


"Bob Lin (MS-MVP)" wrote:

Do you logon local user or domain user? It could be credentials issue.
try
net use domainname\username to map the drive. or this search result
may
help.
Can access remote computer via VPN occasionally
However, when the same user access the VPN, he uses cached
credentials
to access the remote computer. The VPN user may lose the cached
credentials
and may ...
www.chicagotech.net/casestudy/vpnaccess1.htm


--
Bob Lin, Microsoft-MVP, MCSE & CNE
Networking, Internet, Routing, VPN Troubleshooting on
http://www.ChicagoTech.net
How to Setup Windows, Network, VPN & Remote Access on
http://www.HowToNetworking.com


"Donny" <Donny@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:A91805D6-6462-4D13-92FB-4E7CBE98FADE@xxxxxxxxxxxxxxxx
I am having problems connecting to Network Shares over VPN
I am suspecting that this is a network security issue and I am very
weak
in
this area.
.

Relevant Pages

  • Re: [Full-disclosure] Remote Desktop Command Fixation Attacks
    ... This set of steps is redundant in many places, and it's also enormously expensive, since you're using no less than three different expensive bits of networking hardware (AP, PIX, VPN Concentrator), in addition to a bunch of x86 server hardware, windows server licenses, and at least one ISA license. ... Your computers necessarily don't have full access to your network infrastructure when they aren't logged on, so GPOs, software updates, etc can't be applied at the times you want them to be applied. ... Turning on, enabling, and implementing every possible security setting and device you think of is not defence in depth, and will probably only have two effects - your users won't use your wireless network, and you'll burn so much cash you won't have any left to spend on *useful* security measures. ...
    (Full-Disclosure)
  • Re: VPN with SBS 2003 (not R2) and DSL.
    ... Reading property value for VPN returned OK ... Reading VPN Server Name returned OK ... identical network cards. ... it seems doubtful that SBS will work properly with two NICs ...
    (microsoft.public.windows.server.sbs)
  • RE: VPN Connection Problems
    ... Note that we are able to successfully VPN into the office. ... to browse the network, RDP to the server or even ping the server. ... > This newsgroup only focuses on SBS technical issues. ...
    (microsoft.public.windows.server.sbs)
  • Re: VPN issues on SBS2003 with ISA 2004 installed
    ... The user can connect the VPN without trouble. ... Access Rule to allow these protocols. ... gateway of client is not point to PPP adapter RAS Server ... | Connection-specific DNS Suffix. ...
    (microsoft.public.windows.server.sbs)
  • Re: VPN clients unable to connect to other resources.
    ... on the SBS 2003 server just not sure where to go for help on it. ... Next time I'm at my home PC, I'll VPN in and see what IP info I'm getting ... client PC on your LAN, you should be able to do so from a remote VPN client, ... get the network path was not found. ...
    (microsoft.public.windows.server.sbs)
Loading