• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

Unable to rdp through ISA

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA Server 2004 General ] >> General >> Unable to rdp through ISA Page: [1]
Login
Message << Older Topic   Newer Topic >>
Unable to rdp through ISA - 10.Feb.2006 3:02:23 PM   
mark.willis

 

Posts: 8
Joined: 7.Oct.2005
Status: offline
I have an ISA server inline behind a Pix. When I connect remotely via VPN (the Pix handles the VPN) I am able to rdp to the ISA Server but I am unable to rdp to any other server in the domain. A rule exists to allow all traffic from the VPN address pool to the Internal network. When I try to rdp to a server and monitor ISA, the connection shows as initiated with the correct rule, then shows as closed, before finally showing as Denied Connection. When the denied connection shows, no rule name is associated so I don't know what is stopping the connection. I can ping the servers from my client and connect on other ports.

Can anyone suggest anything?
Post #: 1
RE: Unable to rdp through ISA - 10.Feb.2006 4:34:30 PM   
Maurissio

 

Posts: 81
Joined: 26.Feb.2003
Status: offline
Add VPN range to Remote Managment Computers under Toolbox-> Network Objects-> Computer Sets

(in reply to mark.willis)
Post #: 2
RE: Unable to rdp through ISA - 10.Feb.2006 4:44:49 PM   
mark.willis

 

Posts: 8
Joined: 7.Oct.2005
Status: offline
Already done.

(in reply to mark.willis)
Post #: 3
RE: Unable to rdp through ISA - 10.Feb.2006 5:04:00 PM   
Maurissio

 

Posts: 81
Joined: 26.Feb.2003
Status: offline
What about your network rules?

(in reply to mark.willis)
Post #: 4
RE: Unable to rdp through ISA - 10.Feb.2006 5:06:25 PM   
mark.willis

 

Posts: 8
Joined: 7.Oct.2005
Status: offline
There is a route relationship between the VPN address pool and the Internal network.

(in reply to Maurissio)
Post #: 5
RE: Unable to rdp through ISA - 10.Feb.2006 5:29:09 PM   
Maurissio

 

Posts: 81
Joined: 26.Feb.2003
Status: offline
Is your client an XP?

Try to see if this can relate with your issue:

http://support.microsoft.com/?id=818043

(in reply to mark.willis)
Post #: 6
RE: Unable to rdp through ISA - 10.Feb.2006 5:32:42 PM   
mark.willis

 

Posts: 8
Joined: 7.Oct.2005
Status: offline
Yes, my client is Win XP SP2.

I'm not sure this article relates to my problem. The VPN is handled by the Cisco VPN client and the Pix. By the time the traffic hits the ISA server it's no longer encrypted.

(in reply to Maurissio)
Post #: 7
RE: Unable to rdp through ISA - 10.Feb.2006 5:38:08 PM   
ClintD

 

Posts: 1848
Joined: 26.Jan.2001
From: Keller, TX
Status: offline
Does a telnet to 3389 on the destination server succeed?

Can you take a network capture from the destination serrver to see if the 3389 packets are making it that far?

(in reply to mark.willis)
Post #: 8
RE: Unable to rdp through ISA - 10.Feb.2006 5:41:23 PM   
mark.willis

 

Posts: 8
Joined: 7.Oct.2005
Status: offline
Telnet on port 3389 doesn't work either. My next step is looking like getting a sniffer on the network to try and get some packet captures.

(in reply to ClintD)
Post #: 9
RE: Unable to rdp through ISA - 10.Feb.2006 5:41:27 PM   
Maurissio

 

Posts: 81
Joined: 26.Feb.2003
Status: offline
http://www.internetaccessmonitor.com/eng/products/articles/How_to_pass_IPSec_traffic_through_ISA_Server/How_to_pass_IPSec_traffic_through_ISA_Server.php

Take a look at that on 5.2. Cisco paragraph.

You are right about traffic encr, but Sessions are still handled by PIX. So i think u can reach Isa, but not pass through it.


(in reply to mark.willis)
Post #: 10
RE: Unable to rdp through ISA - 10.Feb.2006 5:49:36 PM   
mark.willis

 

Posts: 8
Joined: 7.Oct.2005
Status: offline
But I'm able to ping the servers I wish to rdp to, and I've also been able to hit a SQL Server behind the ISA Server with the SQL Management console on my laptop.

(in reply to Maurissio)
Post #: 11

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA Server 2004 General ] >> General >> Unable to rdp through ISA Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts