Can't get past the server with RDT !!

TheMSsForum.com: The Microsoft Software Forum

Need some help.........I am NOT real good @ these things!

This is the simplistic layout I am working with as of now.
VPN tunnel host is a SBS WIN2000 server connecting thru a Linksys BEFSR41
router and modem to a DSL line with a static IP.
This server is the "INCOMING" gateway to the internet for the network
workstations for RDT.
Internet access going "OUT" from the network, works fine, all allowed
workstations have access to the internet.
VPN can be established from my home machine to the server, works fine.
I can establish RDT with the server, works fine.

Here starts problem #1......
***I currently am having a problem getting RDT thru the server to the
internal network machines, think it is a routing issue***
In an RDT session while on the server I can ping all machines I wish on the
inside network. If I establish a VPN session and try to ping from my
remote......no good, not passing thru.

Here is problem #2.........
Eventually I need to have up to (3) remotes doing RDT.
All home workstations (clients ?) are win XP Pro.
All workstations @ office (remote host ?) are win XP Pro.
In all I might want to have (3) people connecting to the RDT sessions at a
once.
Just not sure how (3) remote people can do RDT thru 3 separate VPN's ??
Can I get (3) VPN's thru the router ?? I know (1) works now.

Can someone please explain to me what I need to do to get this thing to
work. If possible maybe a map of the routing needed.

Thanks
Gene
Top

Re: Can't get past the server with RDT !! by jwr4

jwr4
Tue Dec 30 12:49:44 CST 2003

I have solved the same problem, but in a different way. I have multiple IPs
bound to the public network interface. I added dns entries for
username.domainname.com. Using ISA I published port 3389 from the local
machine to the IP in DNS. I also reserved the IP address in DHCP so it will
never change.

Remote workers get online, fire up the rdp client and go right to their
desktop.

With 1 IP you have to change the port at the workstation via registry edit,
publish the server to the port and single IP and in the RDP client type
username.domain.com:NEWPORT#--example john.microsoft.com:3390.

If you can't ping internal machines while connected via VPN, you probably do
not have IP routing turned on. For security reasons I think the default
policy is to access the server only. RDP over VPN might be more secure if
you were usng IPSEC, but if you are at your desktop in the domain, it seems
redundant to be connected over a VPN too.

jwr4

lo"G Holmes" <g_holmes22@(remove)takenterprises.com> wrote in message
news:IQhIb.15748$xX.40226@attbi_s02...
> Need some help.........I am NOT real good @ these things!
>
> This is the simplistic layout I am working with as of now.
> VPN tunnel host is a SBS WIN2000 server connecting thru a Linksys BEFSR41
> router and modem to a DSL line with a static IP.
> This server is the "INCOMING" gateway to the internet for the network
> workstations for RDT.
> Internet access going "OUT" from the network, works fine, all allowed
> workstations have access to the internet.
> VPN can be established from my home machine to the server, works fine.
> I can establish RDT with the server, works fine.
>
> Here starts problem #1......
> ***I currently am having a problem getting RDT thru the server to the
> internal network machines, think it is a routing issue***
> In an RDT session while on the server I can ping all machines I wish on
the
> inside network. If I establish a VPN session and try to ping from my
> remote......no good, not passing thru.
>
> Here is problem #2.........
> Eventually I need to have up to (3) remotes doing RDT.
> All home workstations (clients ?) are win XP Pro.
> All workstations @ office (remote host ?) are win XP Pro.
> In all I might want to have (3) people connecting to the RDT sessions at
a
> once.
> Just not sure how (3) remote people can do RDT thru 3 separate VPN's ??
> Can I get (3) VPN's thru the router ?? I know (1) works now.
>
> Can someone please explain to me what I need to do to get this thing to
> work. If possible maybe a map of the routing needed.
>
> Thanks
> Gene
>
>


Top

Re: Can't get past the server with RDT !! by G

G
Fri Jan 02 17:34:05 CST 2004

OK
If I understand this correctly I need to get the VPN ports on the sbs2000
server to let thru or forward to port 3389 so the machines on the inside of
the network can connect to the client on the other end of the VPN tunnel.?
If this is correct where & how do I accomplish this ?

Gene

"jwr4" <jwr4@*NOSPAM*einfosystems.com> wrote in message
news:%23P5Y9ZwzDHA.604@tk2msftngp13.phx.gbl...
> I have solved the same problem, but in a different way. I have multiple
IPs
> bound to the public network interface. I added dns entries for
> username.domainname.com. Using ISA I published port 3389 from the local
> machine to the IP in DNS. I also reserved the IP address in DHCP so it
will
> never change.
>
> Remote workers get online, fire up the rdp client and go right to their
> desktop.
>
> With 1 IP you have to change the port at the workstation via registry
edit,
> publish the server to the port and single IP and in the RDP client type
> username.domain.com:NEWPORT#--example john.microsoft.com:3390.
>
> If you can't ping internal machines while connected via VPN, you probably
do
> not have IP routing turned on. For security reasons I think the default
> policy is to access the server only. RDP over VPN might be more secure if
> you were usng IPSEC, but if you are at your desktop in the domain, it
seems
> redundant to be connected over a VPN too.
>
> jwr4
>
> lo"G Holmes" <g_holmes22@(remove)takenterprises.com> wrote in message
> news:IQhIb.15748$xX.40226@attbi_s02...
> > Need some help.........I am NOT real good @ these things!
> >
> > This is the simplistic layout I am working with as of now.
> > VPN tunnel host is a SBS WIN2000 server connecting thru a Linksys
BEFSR41
> > router and modem to a DSL line with a static IP.
> > This server is the "INCOMING" gateway to the internet for the network
> > workstations for RDT.
> > Internet access going "OUT" from the network, works fine, all allowed
> > workstations have access to the internet.
> > VPN can be established from my home machine to the server, works fine.
> > I can establish RDT with the server, works fine.
> >
> > Here starts problem #1......
> > ***I currently am having a problem getting RDT thru the server to the
> > internal network machines, think it is a routing issue***
> > In an RDT session while on the server I can ping all machines I wish on
> the
> > inside network. If I establish a VPN session and try to ping from my
> > remote......no good, not passing thru.
> >
> > Here is problem #2.........
> > Eventually I need to have up to (3) remotes doing RDT.
> > All home workstations (clients ?) are win XP Pro.
> > All workstations @ office (remote host ?) are win XP Pro.
> > In all I might want to have (3) people connecting to the RDT sessions
at
> a
> > once.
> > Just not sure how (3) remote people can do RDT thru 3 separate VPN's ??
> > Can I get (3) VPN's thru the router ?? I know (1) works now.
> >
> > Can someone please explain to me what I need to do to get this thing to
> > work. If possible maybe a map of the routing needed.
> >
> > Thanks
> > Gene
> >
> >
>
>


Top

Re: Can't get past the server with RDT !! by G

G
Mon Jan 12 16:21:01 CST 2004

FIXED.!!
It appears that by forcing the workstations on the static loop to use the
server 10.0.x.xx IP on that sub as the default gateway, all is fixed.! RDT
over the VPN working like a bear.
I want to thank all who tried different solutions.

Gene

"G Holmes" <g_holmes22@(remove)takenterprises.com> wrote in message
news:IQhIb.15748$xX.40226@attbi_s02...
> Need some help.........I am NOT real good @ these things!
>
> This is the simplistic layout I am working with as of now.
> VPN tunnel host is a SBS WIN2000 server connecting thru a Linksys BEFSR41
> router and modem to a DSL line with a static IP.
> This server is the "INCOMING" gateway to the internet for the network
> workstations for RDT.
> Internet access going "OUT" from the network, works fine, all allowed
> workstations have access to the internet.
> VPN can be established from my home machine to the server, works fine.
> I can establish RDT with the server, works fine.
>
> Here starts problem #1......
> ***I currently am having a problem getting RDT thru the server to the
> internal network machines, think it is a routing issue***
> In an RDT session while on the server I can ping all machines I wish on
the
> inside network. If I establish a VPN session and try to ping from my
> remote......no good, not passing thru.
>
> Here is problem #2.........
> Eventually I need to have up to (3) remotes doing RDT.
> All home workstations (clients ?) are win XP Pro.
> All workstations @ office (remote host ?) are win XP Pro.
> In all I might want to have (3) people connecting to the RDT sessions at
a
> once.
> Just not sure how (3) remote people can do RDT thru 3 separate VPN's ??
> Can I get (3) VPN's thru the router ?? I know (1) works now.
>
> Can someone please explain to me what I need to do to get this thing to
> work. If possible maybe a map of the routing needed.
>
> Thanks
> Gene
>
>


Top