RE: Can not view network neighborhood

Thank you Charles for your reply. I am not interested in accessing internal
resources on the NIC. I am interested in accessing the resources on the
server itself. I need to access SQL server, and a "file share" which are on
SBS2003.

Are these resources considered internal?
If that is the case, Do I still need to VPN directly to the SBS ?
Can someone do a VPN tunnel to the external firewall and then a second
tunnel to SBS ? The reason I am asking this because I purchased a very
expensive external firewall and want to use it for VPN tunnel.

Excuse me for these silly questions as I am not an IT guy. Thank you.
""Charles Yang [MSFT]"" wrote:

> Hi John,
>
> Welcome to SBS newsgroup.
>
> Issue description:
> =============
>
> I understand that you encountered problem in browsing the internal
> resources of SBS domain when connect via VPN connections.
>
> Analyzing and suggestion:
> ============
>
> Generally speaking, it should be the expected behavior. By default, you can
> not access the file sharing on the SBS internal client, because the SBS
> 2003 will be considered as a NAT. All requests will be sent to the external
> NIC of the SBS 2003 but not the internal NIC of the SBS 2003, so you can
> not access the SBS internal domain resources via file sharing. If you want
> to access the internal resources on the SBS domain, you can either via the
> remote desktop or via RWW sharepoint websites.
>
> Here I suggest you access the shared folder on the SBS internal domain
> resources via Remote desktop, you can access it via RWW and select the
> internal client from the list, make sure you have check "enable the files
> or folder to be transfer between the remote computer and this computer" in
> the optional setting. You can logon the RWW via http://server ip
> name/remote.
>
> If you want to access the SBS internal resources via VPN connection, you
> have to establish the VPN connection via SBS server itself, and then you
> will get an internal IP address of SBS domain, then you will be permit to
> access SBS internal resources.
>
> Please note that it is not a by Windows issue, we denied the file sharing
> on the external NIC of SBS because of security issue, if you open the file
> sharing you need to open many TCP ports. It is a big threat to security.
>
>
> More info:
> ==========
>
> Router to router VPN on windows 2000
> http://www.microsoft.com/windows2000/server/evaluation/features/deplyr2rvpn.
> asp
>
> 303503 How to Join or Access an Internal Domain from an External Client
> Using
> http://support.microsoft.com/?id=303503
>
> Deployment guide for VPN with ISA 2000
> http://www.isaserver.org/articles/isa2000vpndeploymentkit.html
>
>
> Hope the above information helpful, if you have any other issue or concerns
> please let me know. I am glad to be any further updates.
>
>
>
> Best regards,
>
> Charles Yang (MSFT)
>
> Microsoft CSS Online Newsgroup Support
>
> Get Secure! - www.microsoft.com/security
>
> ======================================================
> This newsgroup only focuses on SBS technical issues. If you have issues
> regarding other Microsoft products, you'd better post in the corresponding
> newsgroups so that they can be resolved in an efficient and timely manner.
> You can locate the newsgroup here:
> http://www.microsoft.com/communities/newsgroups/en-us/default.aspx
>
> When opening a new thread via the web interface, we recommend you check the
> "Notify me of replies" box to receive e-mail notifications when there are
> any updates in your thread. When responding to posts via your newsreader,
> please "Reply to Group" so that others may learn and benefit from your
> issue.
>
> Microsoft engineers can only focus on one issue per thread. Although we
> provide other information for your reference, we recommend you post
> different incidents in different threads to keep the thread clean. In doing
> so, it will ensure your issues are resolved in a timely manner.
>
> For urgent issues, you may want to contact Microsoft CSS directly. Please
> check http://support.microsoft.com for regional support phone numbers.
>
> Any input or comments in this thread are highly appreciated.
> ======================================================
> This posting is provided "AS IS" with no warranties, and confers no rights.
>
>
> =====================================================
> When responding to posts, please "Reply to Group" via your newsreader so
> that others may learn and benefit from your issue.
> =====================================================
>
> This posting is provided "AS IS" with no warranties, and confers no rights.
>
> --------------------
> | Thread-Topic: Can not view network neighborhood
> | thread-index: AcXpMmB3tD3KuqzNS7+SzE98Jvwwyg==
> | X-WBNR-Posting-Host: 24.1.73.33
> | From: "=?Utf-8?B?Sm9objExMg==?=" <John112@xxxxxxxxxxxxxxxxxxxxxxxxx>
> | Subject: Can not view network neighborhood
> | Date: Mon, 14 Nov 2005 07:45:02 -0800
> | Lines: 17
> | Message-ID: <A43452DC-AA79-4231-91C1-E30A7C0AB90A@xxxxxxxxxxxxx>
> | MIME-Version: 1.0
> | Content-Type: text/plain;
> | charset="Utf-8"
> | Content-Transfer-Encoding: 7bit
> | X-Newsreader: Microsoft CDO for Windows 2000
> | Content-Class: urn:content-classes:message
> | Importance: normal
> | Priority: normal
> | X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.0
> | Newsgroups: microsoft.public.windows.server.sbs
> | NNTP-Posting-Host: TK2MSFTNGXA03.phx.gbl 10.40.2.250
> | Path: TK2MSFTNGXA02.phx.gbl!TK2MSFTNGXA01.phx.gbl!TK2MSFTNGXA03.phx.gbl
> | Xref: TK2MSFTNGXA02.phx.gbl microsoft.public.windows.server.sbs:222077
> | X-Tomcat-NG: microsoft.public.windows.server.sbs
> |
> | hello,
> | I have SBS2003 prem ed (2 NICs). I am not running ISA yet. I have an
> | external firewall. I can create VPN tunnel to the firewall from my laptap
> at
> | home. I can successfully create remote desktop connection to the server
> over
> | the tunnel.
> |
> | The problem I am having is, I don't want to use remote desktop connection
> to
> | access the server desktop. I want to browse the network neighborhood and
> use
> | the resources on the server.
> |
> | When the laptop connects over tunnel, it is on the same subnet as the
> server
> | NIC (WAN) on the server. For troubleshooting purposes, I took the laptop
> to
> | the office and directly connected it to the server NIC through the
> router. I
> | can not browse the server. I believe this eliminates the firewall?
> |
> | If I connect the laptop to the internal subnet of the server (2nd NIC),
> | everything works fine. Any help would be greatly appreciated.
> |
>
>
.

Relevant Pages

  • Re: Some Questions
    ... you may need to follow the steps below to configure VPN access ... And make sure you have typed the public FQDN of the SBS ... server on the Web Server Certificate page. ... log in and download Connection Manager. ...
    (microsoft.public.windows.server.sbs)
  • RE: VPN Connection Problems
    ... Note that we are able to successfully VPN into the office. ... to browse the network, RDP to the server or even ping the server. ... > This newsgroup only focuses on SBS technical issues. ...
    (microsoft.public.windows.server.sbs)
  • RE: Enabling VPN Remote Access using SBS 2003 standard with ISA 20
    ... I am glad to hear the VPN issue has been resolved! ... on the SBS Server. ... Enabling VPN Remote Access using SBS 2003 standard with ISA ...
    (microsoft.public.windows.server.sbs)
  • RE: SBS 2003 and WAN connections useing Cisco Routers
    ... Thank you for posting in SBS newsgroup. ... do you mean you have created VPN using router to router or router ... server on the Web Server Certificate page. ... 0x2F if you are looking in Network Monitor). ...
    (microsoft.public.windows.server.sbs)
  • RE: Enabling VPN Remote Access using SBS 2003 standard with ISA 2004
    ... SBS Server, the inbound VPN connection no longer worked. ... Configure the VPN connection on the client and do a VPN test. ...
    (microsoft.public.windows.server.sbs)
Loading