Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Westi on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

VPN Setup: Server won't authenticate user

Status
Not open for further replies.
qwkphkr

qwkphkr

IS-IT--Management
Aug 18, 2006
8
US
Hello,
I'm attempting to set up VPN on SBS 2003. I have used the RRAS wizard to cinfigure RRAS for VPN. I have turned on the ports in the Firewall. The server is NAT'd, and the ports are mapped through the router.

When I set up my client, it connects to the remote end however when it attempts to authenticate my username it simply hangs there until it times out. It is never able to verify the user name.

I was doing this for a client and decided to set up a test lab and got the same result.

I see some information regarding the windows firewall, but can find nothing that details how to disable it, nor do I find anything that definitively states that is the problem.

Any help is appreciated, thank you!
 
Sort by date Sort by votes
Check the security event log to see if the login request is even hitting the server....You can disable windows firewall through the control panel. Make sure you have the proper server addresses configured in your VPN concentrator. Make sure you are accessing the vpn through an outside network (a different subnet on the outside interface.)Try using the domain name befor the username....ie

whatever.com\administrator
password
 
Upvote 0 Downvote
Sounds liek GRE issue. This search result may help,

cannot establish VPN with error 721 and 800
Whenever he tries to establish the VPN, he receives Error 721 or 800. Troubleshooting: 1. Telnet port 1723 and get respond. ...


Bob Lin, MS-MVP, MCSE & CNE
How to Setup Windows, Network, VPN & Remote Access on
 
Upvote 0 Downvote
Just an update. The company that manages the router for this client has attempted to open the correct ports. I worked with them for a little while. They have port 1723 and 47 open on both TCP and UDP as well as having GRE enabled. They have mapped the IP address to my internal server IP address. Nothing is working right now. I only have one nic in the server and am wondering if maybe that is causing some confusion in the system somewhere.
 
Upvote 0 Downvote
Well it turns out that both the hosting company and I have a little to learn about networking. What they have is simply a Cisco 2600 Router which uses NAT translation for security on the internal LAN. They (the hosting company) were hesitant to do a direct mapping of one external IP address to the internal NAT address of the VPN server for security reasons. I was under the impression that they had a firewall in place, but there isn't. When i asked them to do the mapping to test, the VPN connection worked flawlessly.

My final question is: Are they correct in telling me that mapping the IP address will create a security vunerability?
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

MaioMaio
  • Locked
  • Question
Server Remote Desktop License
Replies
0
Views
420
MaioMaio
MaioMaio
Aquiles Vidal
  • Locked
  • Question
Web Browsers in Windows Server or Terminal Server
Replies
0
Views
509
Aquiles Vidal
Aquiles Vidal
DrB0b
  • Locked
  • Question
Windows 2016 IIS FTP server with a ton of user accounts
Replies
4
Views
556
DrB0b
DrB0b
rzammit82
  • Locked
  • Question
Windows Server 2016 - DNS/AD problem
Replies
1
Views
669
suncit
suncit
antonio_dsanchez
  • Locked
  • Question
post-installation WSUS windows server 2016
Replies
0
Views
424
antonio_dsanchez
antonio_dsanchez

Part and Inventory Search

Sponsor

Back
Top