Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Connecting to remote server

Status
Not open for further replies.
obryant32

obryant32

IS-IT--Management
Feb 20, 2003
66
US
OK,

Here's a fun one for you. I have the following scenario that is not working. On our network, let's call it Network1, we have a Sonicwall 2040 set up as our firewall. We also do work with a remote company that has a Microsoft ISA server 2000 acting as their firewall on what we'll call Network2. We have a user inside of Network1 that needs to access a computer that is located inside of Nework2. So, on said user's computer we set up a VPN connection to Network2 using Microsoft's VPN wizard. We are able to succesfully connect and authenticate and we get an IP address. We then attempt to use Remote Desktop connection to connect to the resource on Network 2. It connects, but freezes and then eventually the VPN connection disconnects.

Does anyone have any suggestions as to what could be causing this?

Thanks
Matt
 
Sort by date Sort by votes
I would suggest the MTU on the client PC and server. I'm not sure if you allow icmp traffic accross your networks but you can test for MTU blackholes using ping

the connand you need is ping XXXXXXX -f -l ZZZZ

ZZZZ is the size of the packet your sending in theory when you send a packet over the MTU of the system it will tell you that the packet needs to be fragmented if you send under that limit the reply comes back.

The situation you may have is where you send a big packet and the system doesnt tell you it cant be sent and you never get a reply cos the packet is too big.

Test Plan>
1) connect to vpn
2) ping the required host with out using additional switches (verifiy end to end connectivity)
Ping host using switches

test sizes starting with 1480 if it comes back
Packet needs to be fragmented but DF set.
Lower the size in 25's and see if there is a point where
The packets stop replying just goes Request Timed Out

If this happens download DrTCP from and use it to set the MTU size on both ends to 1300 then reboot both ends, and retry your connection!

Skr
 
Upvote 0 Downvote
You also need to check the MTU on the firewall routers, from the server side to remote and the remote to server. Needed MTU sizes can vary from both ends

Use the pathping command from server to remote and do the reverse. Packet losses should be few if any if the MTU size is set correctly at the firewalls

........................................
Chernobyl disaster..a must see pictorial
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Sameer258
  • Locked
  • Question
Need Help to Find ip and mac address with email who one open my email
Replies
0
Views
283
Sameer258
Sameer258
Sparrow4
  • Locked
  • Question
Configure Avaya IPO R11 / VM Pro + Office365 or Exchange for voicemail to email
Replies
2
Views
301
Johnkite
Johnkite
Tommy_T
  • Locked
  • Question
Sonic wall - Have an issue remotely connectioning VNC and SMB (and AFP) to one of the 2 ISP circuits
Replies
1
Views
245
nnaarrnn
nnaarrnn
Russtoleum
  • Locked
  • Question
Windows client can't connect to sonicwall l2tp server
Replies
0
Views
85
Russtoleum
Russtoleum
raist3001
  • Locked
  • Question
Unable to remote into PBX behind Sonicwall TZ-190
Replies
1
Views
71
fojin
fojin

Part and Inventory Search

Sponsor

Back
Top