Re: VPN Error 733, Event Log Error 20050 with SBS 2003

Sorry, another shameless bump here,

Is there anyone from Microsoft who has the tools to decypher the logs I
posted, or has the relevant flow diagrams to troubleshoot this issue.

I have been through all of the available resources to resolve this
issue (chicagotech, MS Knowledgebase etc) but havn't had any luck yet.





Nick Marks wrote:
OK, this is a bit of a shameless bump to see if any of the Monday
morning people have got any clues as to what could be the problem
here... I don't want the thread to dissapear into the ether like my
previous one.

To summarise, I have a vanilla SBS2K3 installation working perfectly
apart from RRAS as a 2 way PPTP tunnel cannot be established.

The relevant error messages and logs are all available in this thread.
From what I can ascertain the problem may be with security/ encryption
as when using the pptpsvr/clnt applications we do get traffic from the
client to the server, but not the other way around. Likewise the client
never actually logs onto the server.

Any assistance would be greatly appreciated.

Many thanks

Nick Marks





Nick Marks wrote:
I'm positive there have been no funny reconfigurations made on this box
as I installed it. Its a completely vanilla SBS2K3 install running on
Dell hardware. I've set up dozens of these without any problems before
so I'm really perplexed.

Also, as far as I'm aware you can't reinstall RRAS (I think you could
on NT, but I've been wrong before). Unfortunately its also a live
server so a re-build is out of the question.

Thanks for your help though, it gave me a couple of other options.
Hopefully one of those nice people at Microsoft will pick this up in
the morning


Joe wrote:
Nick Marks wrote:
Thanks for getting back to me Joe

I've run through your suggestions; I checked in RRAS ports and I've got
all 5 miniports, so no problem there, however, when I look in my DHCP
leases can only see the LAN clients. I assume I have no entries for RAS
because no VPN clients have ever got as far as being assigned an
address. Also, I'm trying to assign client addresses from a static pool
outside the DHCP range (my pool is from x.x.x.40-49 and my DHCP range
is x.x.x.50-254)

I don't think there's any need to do that, but it shouldn't do any harm
either.

I've also looked at your pointers for enabling all authentication
methods. As suggested I've enabled all authentication and encryption
methods on both the server and client. Still no cigar, same error
messages

For the record, I'm sure the problem isnt with routing; I cant
establich a PPTP connection when I'm on the same LAN as the server.
Also, when I tested with pptpsvr/pptpclnt the server received the
message from the client (but the client never received a message back
from the server)

Any other ideas?



On the basis that there is one server and multiple clients, we can
probably assume the server is at fault. Have you looked after this
server from installation, or could there have been configurations made
you don't know about? Certainly PPTP should work out-of-the-box from a
LAN machine after the appropriate selections are made in the Remote
Access and CEIC wizards. But there's an enormous number of ways to
stop it happening, if someone else has been playing around.

I can't recall if RRAS is one of those bits of Windows that's easy to
reinstall, but if so, I think I'd try that next. The PPP negotiation
isn't working, and you've eliminated the common causes. I think I'd
want to start again with a known clean RRAS, and I would assume that
if reinstallation is practical, that would happen.

It's also possible that after the weekend one of the Microsoft people
will come back with a rigorous sequence of checks. I've just picked
things up as I've gone along. I don't have any flow diagrams for the
system, or documentation on the log files. If you've enabled 'tracing',
by the way, there are *lots* of log files in the directory of that name.

.

Relevant Pages

  • Re: DHCP Problem
    ... Unable to contact a DHCP server. ... The client computer's logs are a mess due to not being able to renew ip ... Denied Connections started showing up in the ISA logs seconds ...
    (microsoft.public.backoffice.smallbiz)
  • Re: Remote Access Wizard fails to complete with error in rraslog f
    ... Windows Server 2003 SP2 is also now on the server which was ... Reading VPN Server Name returned OK ... Checking whether RRAS is already running returned OK ... Enabling DHCP client addressing returned OK ...
    (microsoft.public.windows.server.sbs)
  • Re: Can not communicate with other hosts on network
    ... Micro Office Scan client can cause this issue. ... Posting the both client and server routing tables may help. ... Clients can connect to our RRAS server through both PPTP/L2TP and dial-up ... connections and they will be authenticated on the network with no errors. ...
    (microsoft.public.win2000.ras_routing)
  • RE: How much do you disclose to customers?
    ... Logging - I keep detailed logs. ... their server does crash, I can help them pinpoint the problem test. ... the client may want a follow-up test after they've fixed the problem. ... How much do you disclose to customers? ...
    (Pen-Test)
  • Re: Couple of questions regarding RRAS routing
    ... > Now that I have RRAS working, there are a couple of things I'd like to ... > mount a network drive and backup each server. ... routing decision is made at the client. ... suggest a good hardware router - something small and relatively ...
    (microsoft.public.windows.server.networking)