Remote Desktop through VPN Connection

[Guest]

I have VPN server and on sme network I have 5 other server which I want to
connect through Remote desktop. How I can do it?

 

[Doug Sherman [MVP]]

Once a remote client establishes a VPN connection, the client can use the
internal IP address of the RDP server to establish a Remote Desktop
Connection.

Doug Sherman
MCSE Win2k/NT4.0, MCSA, MCP+I, MVP

 

[Guest]

Thanks for prompt reply.
I am doing same thing but I get error message that computer is not
connecting, I use computer name and IP address but unable to connect it.
I am able to make VPN connection without any problem. I add all these
servers in AD because my VPN server is also domain controller. I can use
Remote Desktop when I am on same network but no when I connect from outside
network.

 

[Erik Heath]

Thanks for prompt reply.
I am doing same thing but I get error message that computer is not
connecting, I use computer name and IP address but unable to connect it.
I am able to make VPN connection without any problem. I add all these
servers in AD because my VPN server is also domain controller. I can use
Remote Desktop when I am on same network but no when I connect from outside
network.

:

Can you ping all of the servers on the VPN'ed network?

 

[Leythos]

I can ping all server because they are on same network(192.168.X.X)
I am using Cable modem for VPN server through Linksys router. I can make
connection through Remote Desktop when I am on same network. Problem I have
that I can make VPN connection but from their I can't make Remote Desktop
connection. I am missing something. I already add these server in AD.

If you can VPN into the first server, and ping the other servers, then
use the remote desktop to connect to their PRIVATE IP addresses inside
the network. If you are trying to do a named connection, then you must
not have DNS setup properly or you didn't tell the PPTP connection to
use the DNS server as the internal DNS server inside your VPN network.

 

[Hafeez Ch]

I can ping all server because they are on same network(192.168.X.X)
I am using Cable modem for VPN server through Linksys router. I can make
connection through Remote Desktop when I am on same network. Problem I have
that I can make VPN connection but from their I can't make Remote Desktop
connection. I am missing something. I already add these server in AD.

 

[Hafeez Ch]

After VPN connection I can't ping other servers.

If you can VPN into the first server, and ping the other servers, then
use the remote desktop to connect to their PRIVATE IP addresses inside
the network. If you are trying to do a named connection, then you must
not have DNS setup properly or you didn't tell the PPTP connection to
use the DNS server as the internal DNS server inside your VPN network.

 

[Doug Sherman [MVP]]

Possible:

You need to configure different subnets at each end of the connection. ie.
If the remote subnet is identical to the local subnet, the client has no
reason to send pings through the VPN tunnel.

Doug Sherman
MCSE Win2k/NT4.0, MCSA, MCP+I, MVP

After VPN connection I can't ping other servers.

 

[Leythos]

After VPN connection I can't ping other servers.

Please reply at the BOTTOM of a message so that it reads like normal
Usenet postings:

When you say you can't PING the other servers, do you mean by IP or by
NAME?

If you can't ping by IP, then you need to tell us more about your
network:

What is your local IP/Subnet at your computer?
What VPN method are you using? PPTP, L2TP, IPSEC
What router are you using at your computer to get on the net?

What router/firewall are you using at the servers?
What ports did you forward inbound to what IP address?
What is the IP Address of the VPN Server?
What is the Subnet of the VPN server?
What are the IP/Subnets of the other servers?

If you connect to the VPN server, at the server itself, can you RD into
the other servers?

 

[Hafeez Ch]

Each end has different subnet (remote end 192.168.2.X) VPN server Side
(192.168.1.X). Ping fail. What's going on here?

Possible:

You need to configure different subnets at each end of the connection. ie.
If the remote subnet is identical to the local subnet, the client has no
reason to send pings through the VPN tunnel.

Doug Sherman
MCSE Win2k/NT4.0, MCSA, MCP+I, MVP

 

[Hafeez Ch]

Please reply at the BOTTOM of a message so that it reads like normal
Usenet postings:

When you say you can't PING the other servers, do you mean by IP or by
NAME?

If you can't ping by IP, then you need to tell us more about your
network:

What is your local IP/Subnet at your computer?
What VPN method are you using? PPTP, L2TP, IPSEC
What router are you using at your computer to get on the net?

What router/firewall are you using at the servers?
What ports did you forward inbound to what IP address?
What is the IP Address of the VPN Server?
What is the Subnet of the VPN server?
What are the IP/Subnets of the other servers?

If you connect to the VPN server, at the server itself, can you RD into
the other servers?

What is your local IP/Subnet at your computer?
192.168.2.150 /255.255.255.0
What VPN method are you using? PPTP, L2TP, IPSEC PPTP
What router are you using at your computer to get on the net?
Linksys RV016

What router/firewall are you using at the servers?
No Firewall
What ports did you forward inbound to what IP address?
None
What is the IP Address of the VPN Server?
192.168.1.154
What is the Subnet of the VPN server?
255.255.255.0
What are the IP/Subnets of the other servers?
192.168.1.100 /255.255.255.0

I can connect with VPN server but can't RD with any server

 

[Leythos]

What is your local IP/Subnet at your computer?
192.168.2.150 /255.255.255.0
What VPN method are you using? PPTP, L2TP, IPSEC PPTP
What router are you using at your computer to get on the net?
Linksys RV016

This is fine, this means that you are not using the same local subnet as
the servers are using.

What router/firewall are you using at the servers?
No Firewall

If your servers are not behind a firewall or router, how are they using
a Private Address scheme for you to access? What is doing the NAT for
your servers network? You show a private IP below, but you say your not
forwarding anything???? Did you setup a 1:1 NAT with all ports mapped
from the outside inside?

What ports did you forward inbound to what IP address?
None

If you have the servers behind a router with NAT addresses, then you had
to FORWARD 1723 inbound to the first server for you would not be able to
reach it for a VPN session - it would be blocked at the router.

What is the IP Address of the VPN Server?
192.168.1.154
What is the Subnet of the VPN server?
255.255.255.0
What are the IP/Subnets of the other servers?
192.168.1.100 /255.255.255.0

I can connect with VPN server but can't RD with any server

based on what you've entered here I don't see how you can have a private
IP for any of the servers and not be doing some type of NAT and
Forwarding to the internal network from the WAN side.

All servers appear to be in the same subnet - at each physical server
(you standing in front of them) can each server ping the other server by
NAME?

 

[Leythos]

If you are using the MS VPN client, try:

Right click the connection and select Properties. Click the Networking tab,
highlight TCP/IP and click the Properties button. Click the Advanced button
and clear the check box for Use default gateway on remote network.

I thought that was set to enabled by default? I'll have to kick myself
if I missed that one when I sent the first reply to the OP.

 

[Doug Sherman [MVP]]

If you are using the MS VPN client, try:

Right click the connection and select Properties. Click the Networking tab,
highlight TCP/IP and click the Properties button. Click the Advanced button
and clear the check box for Use default gateway on remote network.

Doug Sherman
MCSE Win2/NT4.0, MCSA, MCP+I, MVP

 

[Hafeez Ch]

I thought that was set to enabled by default? I'll have to kick myself
if I missed that one when I sent the first reply to the OP.

I am able to RD when I am on same network. I did clear the check box for
default gateway on remote network. Same result.
I disable firewall on router, I also forward 1723 & 47 that's why I am able
to connect through VPN.
Only problem is I can't do RD after VPN connection.

 

[Hafeez Ch]

Networking

I am able to RD when I am on same network. I did clear the check box for
default gateway on remote network. Same result.
I disable firewall on router, I also forward 1723 & 47 that's why I am able
to connect through VPN.
Only problem is I can't do RD after VPN connection.

Here is my PPP adaptor for VPN info.
IP address: 192.168.1.228
Subnetmask: 255.255.255.255
Default Gateway:
DNS server: 127.0.0.1

 

[Steven L Umbach]

I assume you are using your Linksys router as the VPN endpoint? The cable
modem can not be the VPN endpoint. If that is so try to ping the server you
are trying to remote into by it's lan IP address which would be 192.168....
something through the VPN tunnel from the other side over the internet. If
ping works, try to connect to the TS by it's IP address. If ping does not
work check your endpoint configuration on the Linksys device for tcp/ip in
that it should contain the subnet for your lan and allow all traffic if that
is what you want. If you are using an VPN endpoint device on the other side
of the tunnel, check it's connection also in that it is configured to allow
the correct traffic through the tunnel. --- Steve

 

[Leythos]

[snip]

Here is my PPP adaptor for VPN info.
IP address: 192.168.1.228
Subnetmask: 255.255.255.255
Default Gateway:
DNS server: 127.0.0.1

When I VPN (PPTP) into a server that is running RAS and have it setup to
pass-through PPTP sessions on 1723 TCP and (with linksys products 47 TCP
- since they don't support Protocol 47 properly without a port map) I
show the following:

IP 192.168.10.108
Mask 255.255.255.255
Default GW 192.168.10.108

If you don't have a GW address you are not going to route on the remote
network.

Try this - RD into the first server, from the first server RD into the
other servers and let us know if that works.

 

[Hafeez Ch]

[snip]

Here is my PPP adaptor for VPN info.
IP address: 192.168.1.228
Subnetmask: 255.255.255.255
Default Gateway:
DNS server: 127.0.0.1

When I VPN (PPTP) into a server that is running RAS and have it setup to
pass-through PPTP sessions on 1723 TCP and (with linksys products 47 TCP
- since they don't support Protocol 47 properly without a port map) I
show the following:

IP 192.168.10.108
Mask 255.255.255.255
Default GW 192.168.10.108

If you don't have a GW address you are not going to route on the remote
network.

Try this - RD into the first server, from the first server RD into the
other servers and let us know if that works.

How you can add GW on remote VPN server so when VPN assign IP address so you
get GW. Only one thing happen that I can only ping gateway after make VPN
connection but not any other sever which are on same network. I don't know
what's going on.
I can't do RD with any server. I do have port 3389 forward in my router.

 

[Hafeez Ch]

[snip]

Here is my PPP adaptor for VPN info.
IP address: 192.168.1.228
Subnetmask: 255.255.255.255
Default Gateway:
DNS server: 127.0.0.1

When I VPN (PPTP) into a server that is running RAS and have it setup to
pass-through PPTP sessions on 1723 TCP and (with linksys products 47 TCP
- since they don't support Protocol 47 properly without a port map) I
show the following:

IP 192.168.10.108
Mask 255.255.255.255
Default GW 192.168.10.108

If you don't have a GW address you are not going to route on the remote
network.

Try this - RD into the first server, from the first server RD into the
other servers and let us know if that works.

I also ping VPN server IP address but not other server IP address mean I can
ping remote Default GW 192.168.1.1 and VPN server IP address but not any
other IP address.