SBS2K3 and 2003 term server problem since SP1 upgrade

Hope I am on topic here guys as I have a problem that is driving me to
distraction.
Here is the topography...

SBS 2003 SP1 with ISA 2004
IP Internal Nic 192.168.16.1/24 - No GW defined - DNS 192.168.16.1
IP External NIC 10.0.0.1/8 - GW 10.0.0.138 - DNS 192.168.16.1
DNS server - configured to forward to ISP's DNS servers
all works beautifully including all internal (LAN clients)

Server 2003 SP1 configured as terminal server
Int NIC 192.168.16.2/24 - GW 192.168.16.1 - DNS 192.168.16.1
Ext NIC 10.0.0.2/8 - No GW - No DNS server

Router in remote office configured with VPN to router in main office
with servers. VPN works no probs.

I have checked that the internal interface is listed first under
advanced settings on both boxes and that the external interfaces are
not publishing their addresses in DNS.

Lan clients can connect to both the TS box on 10.0.0.2 and the SBS box
(not that we want to) on 10.0.0.1 with no probs, but since upgrade to
SP1 on both boxes and ISA 2004 on the SBS box, External clients have a
lot of trouble connecting, and most of the time cannot connect. Remote
office clients can connect a rdp session to the 10.0.0.1 interface on
the SBS box no probs but not the 10.0.0.2 of the TS box which is where
we want to connect to.

If I create a vpn tunnel (router pass through) through directly to the
SBS box, I can connect to the TS box on it's internal 192.168.16.2
interface, however the routers only allow 1 or maybe 2 pass throughs at
a time so this don't work for us.

The only way I can connect the way we want, which is via the router to
router VPN and hence directly to the 10.0.0.2 interface if to delete
the external interface on the TS box and put it back again then it will
work for a day or so and then fall off again.

What oh what am I doing wrong!
Rossco

.

Relevant Pages

  • Re: static routing
    ... I am creating a deman dial interface on the corporate server and ... connects to the branch office server. ... problem is, I knew this was going to happen, the router that I use at the ... A static route has been added that matches the subnet of the ...
    (microsoft.public.windows.server.networking)
  • Re: Setting Up Home Network
    ... High Speed internet connection ... Network Printer which is already connected to the Wireless Router ... Wireless Router which connects, My Server, Printer and Wirless Laptop. ... The Internal DNS server will usually Forward ...
    (microsoft.public.windows.server.active_directory)
  • Re: static routing
    ... You can't do it manually because the interface doesn't exist until the ... static route for the subnet of the remote site and select the demand dial ... When you make a connction to the server you use the name of the ... The packet goes to the default router ...
    (microsoft.public.windows.server.networking)
  • Re: name server via dhcp, but dont want dhcp assigned addresses
    ... The WAN side of the router runs dhcp to my ISP, ... server addresses by dhcp, as well. ... DNS server addresses provided by the DHCP server (the router, ...
    (Fedora)
  • Re: Please Help Site-To-Site without ISA
    ... You can configure more than one site to site VPN connection on the ... You set up a new demand-dial interface and configure a new site to ... public IP of the VPN server at the second site on the front. ... to router connection. ...
    (microsoft.public.windows.server.networking)
Loading