Re: VPN access to network file shares


I can see why the RDC approach is normally preferred, although in this
case
I think they will prefer the user account workaround.

Perhaps the firm will reconsider if you let them know that with a VPN
approach the SBS network is exposed to any viruses, worms, trogens or other
bad things that happen to the remote workstation.

In addition, any accounting or data base files you open over a VPN can be
scrambled if the connection breaks while one is using it. Databases do not
like to have their records to missing when checked out over the internet.

--
Larry


JPL

"Cliff Galiher" wrote:

The reason people suggest it is because it is easier to administrate and
troubleshoot for the small office. It is also fairly OS agnostic because
the connecting device only needs to display graphics.

That being said, the problem is that you are trying from XP home. For
this
to work, you *must* create a user accont on the XP home with the same
name
as an account on the domain (just authenticating via PPTP isn't enough)
and
the password for this home machine MUST be the same as the password for
that
account on the server. If the password is changed on the server, it
must
be changed on the home computer as well.

On XP pro, if you connect to a share (via UNC or mapped drive) that
requires authentication, it pops up an authentication box. On XP Home,
the
logged in user's username and password are submitted by default, so there
is
NO WAY to authetnicate otherwise.

So, simply put, XP home is jsut not equipped for this task, but can be
bludgeoned into working. Remote Desktop is a far more elegant (and
maintainable) solution.

Hope that helps,

-Cliff

"JPL" <JPL@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:15A285ED-BF55-4B5A-8C01-078B84A6CD9A@xxxxxxxxxxxxxxxx
Larry,

The user has a PC in the office, but it must be switched off when the
user
is out. The organisation is small and has only one server.

Why is everyone suggesting the use of RDC when a simple VPN login plus
mapping of drives ought to do the trick, as it does for others using
the
VPN?
There appears to be no problem with the VPN connection itself - just
the
access to mapped file shares.

JPL

"Larry Struckmeyer [SBS-MVP]" wrote:

This is getting too convoluted.

JPL, is there a workstation at the SBS for this user, or does this
user
need
to connect to a server. If to a server, is there more than one?

If there is only the SBS server, you "should" be able to run the RRAS
wiz
and open the VPN ports on the server, then using the VPN connector on
the
remote, open the tunnel. Once the tunnel is open you should be able
to
use
the RDC connector under Accessories, Communications (although on some
systems it is just under Accessories) to make a connection to the
server
and
use whatever resources it makes available.

But, really, RWW to a unused workstation or a second server is the
best
way
to do this.

--
Larry

Please post the resolution to
your issue so that all can benefit.


"spodosaurus" <spodosaurus@xxxxxxxxxxx> wrote in message
news:485aa913$0$11637$5a62ac22@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
JPL wrote:
Hi, I provide IT support to a locally based charity, and would like
help
to get one of their users connected to their file shares over a VPN
connection. The file shares are on a server running Windows Small
Business Server 2003 R2. The VPN connection is directly to the
server
using Microsoft PPTP. The user can connect to the server via VPN
and
can
use Outlook Web Access without problems. The network file shares
appear
to be setup correctly. This is done via a VBS script, which reports
via
WScript.Network.EnumNetworkDrives.Item(i) that the mappings have
been
successful. However, the newly mapped drives (P:, Q:, etc.) are not
shown
in the Windows Explorer Folders pane, and the user is unable to
find
them, much less access them. I suspect the problem relates to the
PC
OS,
as the PC runs Windows XP Home Edition. (Everything works without
any
problem when connecting from a PC running XP Pro.) I have no access
to
an
XP Home PC myself, although I understand that XP Home cannot join a
domain and is restricted to Simple File Sharing. I have not used
Simple
File Sharing and do not understand the details of its operation or
limitations. Is it possible to connect to the network shares from
XP
Home? If so, how may this be configured? JPL


The network shares are at the remote site with the SBS server,
correct?
I
just want to make absolutely sure before I ramble. If they are on
the
users home network, then that network will be lost when the VPN is
established as Cris was suggesting - the XP Home PC will be assigned
an
IP
in accordance with the remote network, and all IPs will be for the
remote
network not his home network.

That said, yes, it is possible to connect to remote shares using XP
home.
This is how I set up users to do it on the last network I
maintained:

- User initiates a PPTP VPN to remote workplace.
- Router forwards PPTP VPN to SBS 2003 R2 for authentication.
- User initiates Remote Desktop Connection to either a PC at the
remote
workplace with login enabled or to a TS server.
- Shares are available in windows explorer in the RDC as if the user
was
there at the remote site.
- Some shares are mapped using the SBS login batch file.
- These shares are ONLY visible in a Windows Explorer window opened
within
the remote desktop. They are NOT visible on the users local PC's
windows
explorer.

* the user can have access to their local C: drive within the remote
desktop windows explorer window if this is enabled in the RDC
settings.

Other than the VBS mapping, how does your setup differ?

Regards,

Ari
--
spammage trappage: remove the underscores to reply
Many people around the world are waiting for a marrow transplant.
Please
volunteer to be a marrow donor and literally save someone's life:
http://www.abmdr.org.au/
http://www.marrow.org/






.

Relevant Pages

  • Re: Another Remote Connection Manager Problem
    ... > internal and 192.168.1.3 for the internet connection. ... > via the SBS server to all clients. ... > server to allow VPN connections and have port forwarded 443 and 1723 to ... > With this configuration OWA and Remote Workplace are operational. ...
    (microsoft.public.windows.server.sbs)
  • RE: VPN issue on SBS2003
    ... I understand that you encountered VPN connection issue when you use VPN to ... Internet clients or VPN to external VPN Server from SBS Client computers? ... Configure E-mail and Internet Connection Wizard ... Total GRE packets sent = 1 ...
    (microsoft.public.windows.server.sbs)
  • Re: Error 720 connecting to server via VPN
    ... If the VPN is for Exchange, ... Windows Moblie) that need to connect to the server to use Exchange. ... > I've gone through this newsgroup, ran again the CEICW and Remote Access ... > I have run successfully the Connection Manager package on the client PC ...
    (microsoft.public.windows.server.sbs)
  • RE: PPTP VPN connection problems
    ... The problem is that the VPN does not disconnect. ... However after some idle period I can not send packets across the connection. ... A ping to the server would result in "Request timed out". ... If I connect with the VPN client locally to the internet ...
    (microsoft.public.windows.server.sbs)
  • Re: VPN Ports to Open
    ... the VPN connection after you change the firewall before SBS. ... On the server, please stop the Routing and Remote Access service. ... Total GRE packets sent = 1 ...
    (microsoft.public.windows.server.sbs)