Cisco VPN client and XPPro RDP problems

[Rookcr]

This will be a long post. I had asked a similar question and had no luck.

I have a Cisco Pix 515 Firewall. It has been configured with 3DES encryption pak for VPN. That is all installed. I am able to authenticate and log into my network from a remote site. (Home) Here is the problem. I would like to use RDP since I have limited access to PC anywhere licences. My home machine is XPPro and the rest of my group that would utilize this access run XPPro on their remote machines.

At the business the workstations are XPPro with RDP enabled and users set. Internally I can RDP to my machine. Externally through the Cisco VPN client I am unable to connect to my XPPro Workstation. I get an unable to connect to workstation, client not configured, or not any available connections. Yet at the same time internall I can connect to the machine.

Well here is where the post really becomes strange. Externally through my Cisco VPN client I can RDP to a windows 2003 server, and then from that server, RDP to my workstation. this makes no sense to me. I want to be able to go directly to my machine.

I have tested with PC anywhere and If I have PC Anywhere encryption on I am unable to connect to a workstation but if I turn off encryption I am then able to use PC anywhere to connect to my desktop. Anyone have any ideas. I am completly stumped. Any help would be appreciated.

Thanks

Rook

 

[ChicagoTechNet]

can you use RDC by ip?

Robert Lin, MS-MVP, MCSE & CNE
Windows, Network, Internet, VPN, Routing and How to at

http://www.ms-mvps.com

 

[chicocouk]

What is the gateway on the xp pro machine in the office? Is it the pix? If not, does it use the server as a proxy server? If it does, there's your problem.

CCNA, MCSE, Cisco Firewall specialist, VPN specialist, wannabe CCSP

 

[Rookcr]

Thank you both. I cannot RDP by IP address either. My gateway in the office is a Cisco 3600 Router. We have no proxy server. My gut tells me it is with encryption but that may just be a lack of understanding fully what all is happening. I always come back to why can I RDP to a server but not to a workstation? Thank you both for your assistance. If you have any other ideas or can help in any way please let me know.

Rook

 

[ChicagoTechNet]

but can you ping the workstation IP?

Robert Lin, MS-MVP, MCSE & CNE
Windows, Network, Internet, VPN, Routing and How to at

http://www.ms-mvps.com

 

[chicocouk]

I think you misunderstood my question. I don't mean what is your gateway in the office, as in what is the hardware. I meant look at the config of the desktop machines.

If you do ipconfig on the desktop machine, what is it's default gateway? Is it the pix firewall? Or is it something else? Similarly, what's the gateway of the server?

Also, what Robert's asking about pinging the machine will give another clue

CCNA, MCSE, Cisco Firewall specialist, VPN specialist, wannabe CCSP

 

[Rookcr]

Ok. I can ping the XPPro Workstations while in connected via VPN. As far as the default gateways, both office workstations and servers are pointed to the same gateway. 192.168.2.2 which is a cisco 3600 router. I thought I would try to to map a network drive and I am unable to do that as well by name or IP address.

 

[Radioman3]

I don't think your problem is related to VPN, but is a permissions issue. You state that if you login into your Win2K3 server then you can login to your WinXPPro desktop. Here's the issue since your home machine isn't part of your domain, when you try to connect to your WinXPPro desktop it will fail because you're trying to login using a local security account on your home machine. Try connecting to the WinXPPro (office) via \\machine\resouce /usernameassword (Domain credentials). Then try to connect via RDP. RDP looks to either a local security account (default) or domain account (configured).