Re: Cannot Remote Desktop (or ping) between 2 SBS sites

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

From: Frank McCallister SBS MVP (anonymous)
Date: 01/03/05 

Date: Mon, 3 Jan 2005 06:54:42 -0600

First step is to change the listening port on all WS you wish to RDP to. See
http://support.microsoft.com/default.aspx?scid=kb;EN-US;q306759 use 3390,
91, 92, etc

Next in ISA Server Management Expand Access Policy and under Protocols
Select Internet Access Any RPC Service and right click Select Properties and
Create New Protocol for each WS. For simplicity name them same as WS and
assign the Port you set under step one Inbound.

Next Expand Publishing and create New Server Publishing Rule for each WS.

For Windows Firewall on WS change port to new port or disable Firewall 

-- 
Frank McCallister SBS MVP
COMPUMAC
"Jimbo" <anonymous@discussions.microsoft.com> wrote in message 
news:0e8d01c4f112$752ee750$a401280a@phx.gbl...
> Thanks for quick reply.  I will probably opt to change one
> of the site's local IP schemas to a different private
> range; but we are running ISA - could you elaborate a
> little on what needs to be done with ISA to have RDC work
> without changing IP schemes?
>
>
>>-----Original Message-----
>>Hi Jimbo
>>
>>Yes for VPN you will have to have a different subnet for
> the two networks.
>>You could use RDC directly on alternate ports with ISA
> However.
>>
>>-- 
>>Frank McCallister SBS MVP
>>COMPUMAC
>>"Jimbo" <jimbo@nospam.com> wrote in message
>>news:0e8301c4f10e$392c3090$a401280a@phx.gbl...
>>>I have a client (law office) that recently split into 2
>>> clients. They continue to run SBS2K at the original
> site;
>>> the new site runs SBS2K3 (they are now different
> companies
>>> with different domain names - not really 1 company
>>> w/multiple sites). There is a need for users at the new
>>> SBS2K3 site to VPN into the SBS2K site, and then Remote
>>> Desktop Connect to a workstation at that site.
>>>
>>> When I (or anyone else) attempts to vpn into the SBS2K
>>> site and then remote desktop connect to workstations -
>>> this works no problem from home - but does not work from
>>> the SBS2K3 site.
>>>
>>> When VPN'd in from the SBS2K3 site (VPN connects fine) I
>>> cannot ping anything on the other site by either
> hostname
>>> or IP address.  I did realize, when troubleshooting,
> that
>>> both sites have the same local IP addressing scheme
> (which
>>> may be the problem).  I tried fully qualifying the
>>> hostnames with the domain name when pinging (domain
> names
>>> are different between networks ofcourse) - still cannot
>>> get a reply from ping.
>>>
>>> For this to work (vpn in and remote desktop) between 2
>>> sites with different domain names, do I still need to
> have
>>> the 2 networks have different local IP schemes?  I can
>>> understand how this might be the case since the hostname
>>> will resolve to an IP address that may exist on either
>>> network, since both networks use the same ip scheme.
>>>
>>> If not, can someone suggest what else might cause a ping
>>> from a workstation on network A, VPN'd into network B,
> to
>>> not get a reply from workstations on network B?
>>>
>>> Thanks for any help that can be supplied.
>>
>>
>>.
>>

Relevant Pages

  • Re: Nortel VPN Client
    ... Turn off the firewall client from ISA. ... VPN negotiation and the actual tunnel cannot go through separate routes. ... If I run port 500 through ISA but run port 10001 ...
    (microsoft.public.windows.server.sbs)
  • Re: Bizzare ISA2004 VPN Issues, Please help
    ... In the port properties, click PPTP and click configure button. ... Reconfigure the VPN. ... service and directly use the RRAS service to serve as VPN. ... that we can concentrate on the ISA and continue the troubleshooting. ...
    (microsoft.public.isa)
  • Re: VPN port redirection
    ... ISA which hosts the VPN service has a local IP, ... (i.e. use both port forwarding and passthrough?) ... > - UDP Port 500 ...
    (microsoft.public.isa.vpn)
  • Re: Map drives over internet to SBS 2000
    ... I set up the ISA to allow port 47 IP and 1723 TCP ... I set up a vpn connection using pptp ... > I used the wizard in routing and remote access and selected the VPN. ...
    (microsoft.public.backoffice.smallbiz2000)
  • Re: Cannot Remote Desktop (or ping) between 2 SBS sites
    ... Change the Port!!! ... SBS2K3 site to VPN into the SBS2K site, ... Desktop Connect to a workstation at that site. ... are different between networks ofcourse) - still cannot ...
    (microsoft.public.windows.server.sbs)