Re: Connection Wizard - VPN Problem
- From: Joe <joe@xxxxxxxxxxxxxx>
- Date: Sun, 23 Mar 2008 18:20:35 +0000
-Draino- wrote:
Hi all,
I am getting an error with the "connect to sbs" (I think it's the connection
wizard that I downloaded from the RWW interface) When I try to connect it's
fails. I see it's trying to connect with a vpn connection but I get this
error:
Unable to establish the VPN connection. The VPN server may be unreachable,
or security parameters may not be configured properly for this connection.
(Error 800) For customized troubleshooting information for this connection,
click Help
Help doesn't provide much help :)
Any suggestions
What the others suggest is basically correct, but routers differ considerably. What you want to do is to use the PPTP type of VPN, which requires TCP port 1723 and IP protocol 47 (GRE) to be forwarded to the server. Many routers will have a single facility, called 'PPTP service' or 'PPTP passthrough' or something similar.
More advanced routers can accept PPTP connections themselves, which is not what you want here. If there are multiple PPTP entries, you want 'passthrough'. You do also need to have requested VPN in both the CEICW and RRAS wizards, and users need to be in the Mobile Users security group.
You are now also making a direct TCP/IP network connection, which RWW doesn't do. The usual routing rule that all network addresses (ranges) must be different applies here. If the SBS LAN is using 192.168.16.x addresses, for example, any remote client must not use this range on any of its own network interfaces.
There are two stages in making the connection, and your client software will report success after just the first stage. You get error 800 if the first stage doesn't complete, which means the TCP/1723 connection wasn't made. The usual error if that works but the GRE tunnel is not made is 723, after a timeout, but there are other possibilities.
Finally, VPN is the right answer to a very limited range of questions, as it offers a significant security risk to the network. If a user has a laptop which is regularly used on the LAN and remotely, then VPN allows him to see the same network environment, although much more slowly through the VPN. Almost all other purposes for which VPN is used can be achieved more securely by other means.
There is also a group of applications, particularly the low-end accounting packages, which should *not* be used over a network prone to interruptions, which VPN is. The use of a split Access database is also a bad idea, the backend data file being very fragile and easily broken by a disconnection.
.
- Follow-Ups:
- Re: Connection Wizard - VPN Problem
- From: -Draino-
- Re: Connection Wizard - VPN Problem
- Prev by Date: Re: help on how I can access remote shares WITHOUT using VPN
- Next by Date: Re: Default email address
- Previous by thread: Re: Connection Wizard - VPN Problem
- Next by thread: Re: Connection Wizard - VPN Problem
- Index(es):
Relevant Pages
|
Loading
