Welcome to ISAserver.org
Forums |
Register |
Login |
My Profile |
Inbox |
RSS 
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
VPN problem
|
Users viewing this topic:
none
|
Logged in as: Guest
|
Login  | |
|
VPN problem - 26.Jan.2008 9:02:44 AM
|
|
|
Nightlegend
Posts: 14
Joined: 5.Jan.2008
Status: offline
|
Greetings:
I am trying to establis an VPN connection through ISA server 2004 standard edition ,I've set up all the necessary access rules and when trying to establish connection the dialog stops on the stage of (Verifying username and password) and nothing happens then the connecting process fails ,I am using the NIC public IP ,is this correct? or should I use the router's IP?
Thanks in advance
< Message edited by Nightlegend -- 27.Jan.2008 2:26:49 AM >
|
|
|
|
|
RE: VPN problem - 6.Feb.2008 5:14:26 AM
|
|
|
Nightlegend
Posts: 14
Joined: 5.Jan.2008
Status: offline
|
Dear Tarek:
I have tried earlier to email you ,but it got bounced back due to your spam filter!
Anyway I followed this tutorial first thing ,rechecked everything and all were followed accurately.
Checking the ISA server's log file I found the following:
Event Type: Warning
Event Source: Rasman
Event Category: None
Event ID: 20209
Date: 1/30/2008
Time: 3:43:31 PM
User: N/A
Computer: MARINA-ISA
Description:
A connection between the VPN server and the VPN client 192.168.1.52 has been established, but the VPN connection cannot be completed. The most common cause for this is that a firewall or router between the VPN server and the VPN client is not configured to allow Generic Routing Encapsulation (GRE) packets (protocol 47). Verify that the firewalls and routers between your VPN server and the Internet allow GRE packets. Make sure the firewalls and routers on the user's network are also configured to allow GRE packets. If the problem persists, have the user contact the Internet service provider (ISP) to determine whether the ISP might be blocking GRE packets.
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
And this:
Event Type: Warning
Event Source: RemoteAccess
Event Category: None
Event ID: 20169
Date: 1/30/2008
Time: 3:49:32 PM
User: N/A
Computer: MARINA-ISA
Description:
Unable to contact a DHCP server. The Automatic Private IP Address 169.254.132.79 will be assigned to dial-in clients. Clients may be unable to access resources on the network.
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
AND:
Event Type: Warning
Event Source: DnsApi
Event Category: None
Event ID: 11163
Date: 1/30/2008
Time: 12:10:36 PM
User: N/A
Computer: MARINA-ISA
Description:
The system failed to register host (A) resource records (RRs) for network adapter
with settings:
Adapter Name : {EF819C28-2A25-4988-8BB6-D36AF4666B97}
Host Name : marina-isa
Primary Domain Suffix : MARINA.DC
DNS server list :
192.168.1.6, 212.103.160.18
Sent update to server : <?>
IP Address(es) :
192.168.1.4
The reason the system could not register these RRs was because the DNS server failed the update request. The most likely cause of this is that the authoritative DNS server required to process this update request has a lock in place on the zone, probably because a zone transfer is in progress.
You can manually retry DNS registration of the network adapter and its settings by typing "ipconfig /registerdns" at the command prompt. If problems still persist, contact your DNS server or network systems administrator.
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 2d 23 00 00 -#..
As for the addressing I am using static ranges 10.0.0.10 to 10.0.0.110 ,these ranges are not located within my network' default ranges (I am using 192.168.x.x) ,DHCP is disabled.
On the ISA server machine there are two NICs ,here's their information:
Microsoft Windows [Version 5.2.3790]
(C) Copyright 1985-2003 Microsoft Corp.
C:\Documents and Settings\isa admin>ipconfig /all
Windows IP Configuration
Host Name . . . . . . . . . . . . : marina-isa
Primary Dns Suffix . . . . . . . : MARINA.DC
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : Yes
WINS Proxy Enabled. . . . . . . . : Yes
DNS Suffix Search List. . . . . . : MARINA.DC
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : HP NC373i Multifunction Gigabit Server Ad
apter
Physical Address. . . . . . . . . : 00-1A-4B-E0-F0-52
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.1.4
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . :
DNS Servers . . . . . . . . . . . : 192.168.1.6
212.xxx.xxx.18
Ethernet adapter Local Area Connection 2:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : HP NC1020 Gigabit Server Adapter 32 PCI
Physical Address. . . . . . . . . : 00-18-71-4D-05-66
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 196.xxx.xxx.74
Subnet Mask . . . . . . . . . . . : 255.255.255.248
Default Gateway . . . . . . . . . : 196.xxx.xxx.73
DNS Servers . . . . . . . . . . . : 212.xxx.xxx.18
212.xxx.xxx.22
NetBIOS over Tcpip. . . . . . . . : Disabled
C:\Documents and Settings\isa admin>
I am looking forward for your reply
Best regards
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
Printable Version
