| Author |
Message |
ChristopherE
Guest
|
 Posted:
Wed Jan 05, 2005 12:57 am Post subject:
RE: Exchange 2003 on SBS 2003 - VPN Connectivity Issue |
|
|
I'm using DS-601 with DFL-700 firewall. Both from D-Link.
Everything else works fine. Yes o-server1 is the name.. i just did a typo in
the text :| But it is correct written in lmhosts and hosts. Exchange is on an
SBS 2003 server.
"Tom Perot" wrote:
| Quote: | What are you using as a vpn?
When you ping from laptop, bytes do not increase in count for inbound and
outbound stats.
Please confirm your email server name - you have o-server1 in the lmhosts
and hosts but below it says o-server in the text.
This I know is frustrating.
"ChristopherE" wrote:
Yes i can ping without any problems at all.
I've changed the lmhost and hosts file again.
Just like you wrote, with 20 placeholders also.
lmhosts
192.168.10.1 O-SERVER1 #PRE #DOM:HYMERCENTER
192.168.10.1 "HYMERCENTER \0x1b" #PRE
hosts
192.168.10.1 o-server1.hymercenter.local o-server1
Ping works on both IP and servername.. And if i do a ping -a 192.168.10.1 it
referrs to o-server1.hymercenter.local but exchange do not work :(((
It doesnt even seem to send any info through the VPN-connection (i can see
how many bytes are transmitted) when i click for it to connect.
Exchange server is called o-server with IP 192.168.10.1 and domain is
hymercenter.local. I'm using IP# 192.168.30.1 on the VPN-computer which is
pingable from the exchange-server. All other datatransmits works.
Any more help available? :|
"Tom Perot" wrote:
Before you check the following statements, please answer the following:
Can you ping the ip address of the mail server via the VPN connection from
your laptop? (i.e. ping 192.168.2.2)
lmhosts
192.168.2.2 WW-1-W2K3-SVR #PRE #DOM:CR
192.168.2.2 "CR \0x1b" #PRE
------
hosts
192.168.2.2 ww-1-w2k3-svr.cr.local ww-1-w2k3-svr
192.168.2.2 is ip address of mail server
Server name is ww-1-w2k3-svr
Domain is cr.local
Take off the .local in the two places in the hosts file leaving only CR
I just tested this config on a new W2K3/Ex 2003 site with a new customer and
it worked as well as previously on 5.5 servers.
"ChristopherE" wrote:
Hmm no, didn't work either.. this is getting really enoying :D
One question: dd-222-svr.dh.com is that a domain? should i replace that with
o-server1.domain.local or something else? :)
"Tom Perot" wrote:
Look at Article ID : 155048 and Article ID : 837391
In addition, I had luck with adding the following statements. Notice the
lmhosts statement has to have exactly 20 placeholders between the quotes.
Copy and paste these statements and modify.
Server name - dd-222-svr
Windows Domain - DD
Hosts file
192.168.1.2 dd-222-svr.dh.com dd-222-svr
Lmhosts file
192.168.1.2 DD-222-SVR #PRE #DOM:DD
192.168.1.2 "DD \0x1b" #PRE
"ChristopherE" wrote:
Yes, i do have 3 wins servers installed.. And one at the exchange computer
also.
It is filled in but still won't work.
I'd be really happy if you wanted to give me the host and lmhost info.
Maybe something is wrong with the winsserver or something..
Best regards,
Chris
"Tom Perot" wrote:
I feel your pain - I had same issue and it drove me crazy for about a week.
Are you using a WINS server? If you have one installed at your org, then
make sure your VPN's entry for WINS is filled in so that it will be passed on
to your VPN client.
If you do not have a WINS server, then modify your hosts and lmhosts files
on the laptop.
I am using a PIX firewall and had the same problem connecting to a EX5.5
Server. I had to add entries to the hosts and lmhosts files due to the fact
that I did not have a WINS server at the site.
At another site in the company, I just added a W2K3 box w/ EX 2003 and WINS.
I added the WINS entry into the PIX 501 VPN screen and the laptop connects
to Ex server without a hosts or lmhosts modification.
If you need lmhosts and hosts info, reply and I will post.
"ChristopherE" wrote:
hmm no, tried without it.. same thing
"ChristopherE" wrote:
Could this have something to do with Windows SP2 Firewall?
No?
"ChristopherE" wrote:
Tried it.. but it's the same thing :(
"Robert Bird" wrote:
I do the same, though from a VPN connection on the actual laptop (PPTP). I
always use the IP Address of the Exchange server, rather than it's name and
it works fine (in this case 192.168.10.1 ).
Try that and let me know how you get on.
Rob
"ChristopherE" wrote:
I forgot to mention that i am logged in into the domain at home also with the
VPN client (it allows me to domain-login).
"ChristopherE" wrote:
Hello my friends! :)
At work i have set up a really good working Exchange 2003 Server on SBS
2003. Everything works great, but when i take my laptop home, connect with my
VPN Connection (It's an Router to Router VPN Connection) i cannot connect to
the exchange server.
I'm in the Control Panel -> Email -> Accounts thingy.
And i've put in o-server1.domain.local which my server is called.
And my email box (yes this is the exact computer that i have at work and it
works great). But then i click on "check name" or what its called (i have
swedish version). And then it takes about 20 seconds and i get an error msg
saying that the server is not online or something like that. If i disable the
VPN-connection this search only takes half of a second, so my conclusion is
that its trying to use the VPN Connection but something is wrong.
Okey now you will probabbly ask if i can ping the server by name, and i'm
sorry to say that that's no problem (which makes this alot harder imo).
ping o-server1
Svar från 192.168.10.1: byte=32 tid=21ms TTL=127
Svar från 192.168.10.1: byte=32 tid=53ms TTL=127
Svar från 192.168.10.1: byte=32 tid=71ms TTL=127
Svar från 192.168.10.1: byte=32 tid=53ms TTL=127
Also works with bigger byte, no problem at all.
ping o-server1.domain.local
Skickar signaler till o-server1.domain.local [192.168.10.1] med 32 byte data:
Svar från 192.168.10.1: byte=32 tid=21ms TTL=127
Svar från 192.168.10.1: byte=32 tid=75ms TTL=127
Svar från 192.168.10.1: byte=32 tid=30ms TTL=127
Svar från 192.168.10.1: byte=32 tid=22ms TTL=127
Also works. I can even ping my computer with name & ip from the office.
Shares works. Other programs works. Only thing that doesn't work just as on
the office is http://o-server1 it says that my ip doesn't have any access for
that (but i've fixed that by adding the ip in IIS). Maybe it has something to
do with it? Maybe not.
I'd be glad to give you any more info if you want. Ooooh. the client is
using windows XP with latest office 2003 + sp1 office + sp2 xp.
Please help me! :)
Best regards,
Christopher Engstrand |
|
|
| Back to top |
|
 |
Tom Perot
Guest
|
| Posted:
Wed Jan 05, 2005 1:27 am Post subject:
RE: Exchange 2003 on SBS 2003 - VPN Connectivity Issue |
|
|
Have you looked at
http://support.dlink.com/faq/view.asp?prod_id=1904&question=DFL-700%20/%20DFL-1100
At this point, I think that you are going to find that you had more than one
problem. I think our name resolution is ok but it appears maybe some ports
are being blocked on the firewall now. Please see above and notice if there
is a way to open up port 135, etc. on the firewall.
I would suggest temporarily unblock all tcp and udp ports on the VPN
interface. If this is a site - site VPN (hware to hware) then I would do it
temporarily on both vpns. Try again and I have confidence that it will work.
I do not see a reason to restrict down packets on a secure tunnel but you
might have a need. If you do, I will supply you with ports needed.
"ChristopherE" wrote:
| Quote: | I'm using DS-601 with DFL-700 firewall. Both from D-Link.
Everything else works fine. Yes o-server1 is the name.. i just did a typo in
the text :| But it is correct written in lmhosts and hosts. Exchange is on an
SBS 2003 server.
"Tom Perot" wrote:
What are you using as a vpn?
When you ping from laptop, bytes do not increase in count for inbound and
outbound stats.
Please confirm your email server name - you have o-server1 in the lmhosts
and hosts but below it says o-server in the text.
This I know is frustrating.
"ChristopherE" wrote:
Yes i can ping without any problems at all.
I've changed the lmhost and hosts file again.
Just like you wrote, with 20 placeholders also.
lmhosts
192.168.10.1 O-SERVER1 #PRE #DOM:HYMERCENTER
192.168.10.1 "HYMERCENTER \0x1b" #PRE
hosts
192.168.10.1 o-server1.hymercenter.local o-server1
Ping works on both IP and servername.. And if i do a ping -a 192.168.10.1 it
referrs to o-server1.hymercenter.local but exchange do not work :(((
It doesnt even seem to send any info through the VPN-connection (i can see
how many bytes are transmitted) when i click for it to connect.
Exchange server is called o-server with IP 192.168.10.1 and domain is
hymercenter.local. I'm using IP# 192.168.30.1 on the VPN-computer which is
pingable from the exchange-server. All other datatransmits works.
Any more help available? :|
"Tom Perot" wrote:
Before you check the following statements, please answer the following:
Can you ping the ip address of the mail server via the VPN connection from
your laptop? (i.e. ping 192.168.2.2)
lmhosts
192.168.2.2 WW-1-W2K3-SVR #PRE #DOM:CR
192.168.2.2 "CR \0x1b" #PRE
------
hosts
192.168.2.2 ww-1-w2k3-svr.cr.local ww-1-w2k3-svr
192.168.2.2 is ip address of mail server
Server name is ww-1-w2k3-svr
Domain is cr.local
Take off the .local in the two places in the hosts file leaving only CR
I just tested this config on a new W2K3/Ex 2003 site with a new customer and
it worked as well as previously on 5.5 servers.
"ChristopherE" wrote:
Hmm no, didn't work either.. this is getting really enoying :D
One question: dd-222-svr.dh.com is that a domain? should i replace that with
o-server1.domain.local or something else? :)
"Tom Perot" wrote:
Look at Article ID : 155048 and Article ID : 837391
In addition, I had luck with adding the following statements. Notice the
lmhosts statement has to have exactly 20 placeholders between the quotes.
Copy and paste these statements and modify.
Server name - dd-222-svr
Windows Domain - DD
Hosts file
192.168.1.2 dd-222-svr.dh.com dd-222-svr
Lmhosts file
192.168.1.2 DD-222-SVR #PRE #DOM:DD
192.168.1.2 "DD \0x1b" #PRE
"ChristopherE" wrote:
Yes, i do have 3 wins servers installed.. And one at the exchange computer
also.
It is filled in but still won't work.
I'd be really happy if you wanted to give me the host and lmhost info.
Maybe something is wrong with the winsserver or something..
Best regards,
Chris
"Tom Perot" wrote:
I feel your pain - I had same issue and it drove me crazy for about a week.
Are you using a WINS server? If you have one installed at your org, then
make sure your VPN's entry for WINS is filled in so that it will be passed on
to your VPN client.
If you do not have a WINS server, then modify your hosts and lmhosts files
on the laptop.
I am using a PIX firewall and had the same problem connecting to a EX5.5
Server. I had to add entries to the hosts and lmhosts files due to the fact
that I did not have a WINS server at the site.
At another site in the company, I just added a W2K3 box w/ EX 2003 and WINS.
I added the WINS entry into the PIX 501 VPN screen and the laptop connects
to Ex server without a hosts or lmhosts modification.
If you need lmhosts and hosts info, reply and I will post.
"ChristopherE" wrote:
hmm no, tried without it.. same thing
"ChristopherE" wrote:
Could this have something to do with Windows SP2 Firewall?
No?
"ChristopherE" wrote:
Tried it.. but it's the same thing :(
"Robert Bird" wrote:
I do the same, though from a VPN connection on the actual laptop (PPTP). I
always use the IP Address of the Exchange server, rather than it's name and
it works fine (in this case 192.168.10.1 ).
Try that and let me know how you get on.
Rob
"ChristopherE" wrote:
I forgot to mention that i am logged in into the domain at home also with the
VPN client (it allows me to domain-login).
"ChristopherE" wrote:
Hello my friends! :)
At work i have set up a really good working Exchange 2003 Server on SBS
2003. Everything works great, but when i take my laptop home, connect with my
VPN Connection (It's an Router to Router VPN Connection) i cannot connect to
the exchange server.
I'm in the Control Panel -> Email -> Accounts thingy.
And i've put in o-server1.domain.local which my server is called.
And my email box (yes this is the exact computer that i have at work and it
works great). But then i click on "check name" or what its called (i have
swedish version). And then it takes about 20 seconds and i get an error msg
saying that the server is not online or something like that. If i disable the
VPN-connection this search only takes half of a second, so my conclusion is
that its trying to use the VPN Connection but something is wrong.
Okey now you will probabbly ask if i can ping the server by name, and i'm
sorry to say that that's no problem (which makes this alot harder imo).
ping o-server1
Svar från 192.168.10.1: byte=32 tid=21ms TTL=127
Svar från 192.168.10.1: byte=32 tid=53ms TTL=127
Svar från 192.168.10.1: byte=32 tid=71ms TTL=127
Svar från 192.168.10.1: byte=32 tid=53ms TTL=127
Also works with bigger byte, no problem at all.
ping o-server1.domain.local
Skickar signaler till o-server1.domain.local [192.168.10.1] med 32 byte data:
Svar från 192.168.10.1: byte=32 tid=21ms TTL=127
Svar från 192.168.10.1: byte=32 tid=75ms TTL=127
Svar från 192.168.10.1: byte=32 tid=30ms TTL=127
Svar från 192.168.10.1: byte=32 tid=22ms TTL=127
Also works. I can even ping my computer with name & ip from the office.
Shares works. Other programs works. Only thing that doesn't work just as on
the office is http://o-server1 it says that my ip doesn't have any access for
that (but i've fixed that by adding the ip in IIS). Maybe it has something to
do with it? Maybe not.
I'd be glad to give you any more info if you want. Ooooh. the client is
using windows XP with latest office 2003 + sp1 office + sp2 xp.
Please help me! :)
Best regards,
Christopher Engstrand |
|
|
| Back to top |
|
|
Tom Perot
Guest
|
| Posted:
Wed Jan 05, 2005 1:31 am Post subject:
RE: Exchange 2003 on SBS 2003 - VPN Connectivity Issue |
|
|
Also look at
http://support.dlink.com/faq/view.asp?prod_id=1899&question=DFL-700%20/%20DFL-1100
Look and see why it is dropping the packets.
"ChristopherE" wrote:
| Quote: | I'm using DS-601 with DFL-700 firewall. Both from D-Link.
Everything else works fine. Yes o-server1 is the name.. i just did a typo in
the text :| But it is correct written in lmhosts and hosts. Exchange is on an
SBS 2003 server.
"Tom Perot" wrote:
What are you using as a vpn?
When you ping from laptop, bytes do not increase in count for inbound and
outbound stats.
Please confirm your email server name - you have o-server1 in the lmhosts
and hosts but below it says o-server in the text.
This I know is frustrating.
"ChristopherE" wrote:
Yes i can ping without any problems at all.
I've changed the lmhost and hosts file again.
Just like you wrote, with 20 placeholders also.
lmhosts
192.168.10.1 O-SERVER1 #PRE #DOM:HYMERCENTER
192.168.10.1 "HYMERCENTER \0x1b" #PRE
hosts
192.168.10.1 o-server1.hymercenter.local o-server1
Ping works on both IP and servername.. And if i do a ping -a 192.168.10.1 it
referrs to o-server1.hymercenter.local but exchange do not work :(((
It doesnt even seem to send any info through the VPN-connection (i can see
how many bytes are transmitted) when i click for it to connect.
Exchange server is called o-server with IP 192.168.10.1 and domain is
hymercenter.local. I'm using IP# 192.168.30.1 on the VPN-computer which is
pingable from the exchange-server. All other datatransmits works.
Any more help available? :|
"Tom Perot" wrote:
Before you check the following statements, please answer the following:
Can you ping the ip address of the mail server via the VPN connection from
your laptop? (i.e. ping 192.168.2.2)
lmhosts
192.168.2.2 WW-1-W2K3-SVR #PRE #DOM:CR
192.168.2.2 "CR \0x1b" #PRE
------
hosts
192.168.2.2 ww-1-w2k3-svr.cr.local ww-1-w2k3-svr
192.168.2.2 is ip address of mail server
Server name is ww-1-w2k3-svr
Domain is cr.local
Take off the .local in the two places in the hosts file leaving only CR
I just tested this config on a new W2K3/Ex 2003 site with a new customer and
it worked as well as previously on 5.5 servers.
"ChristopherE" wrote:
Hmm no, didn't work either.. this is getting really enoying :D
One question: dd-222-svr.dh.com is that a domain? should i replace that with
o-server1.domain.local or something else? :)
"Tom Perot" wrote:
Look at Article ID : 155048 and Article ID : 837391
In addition, I had luck with adding the following statements. Notice the
lmhosts statement has to have exactly 20 placeholders between the quotes.
Copy and paste these statements and modify.
Server name - dd-222-svr
Windows Domain - DD
Hosts file
192.168.1.2 dd-222-svr.dh.com dd-222-svr
Lmhosts file
192.168.1.2 DD-222-SVR #PRE #DOM:DD
192.168.1.2 "DD \0x1b" #PRE
"ChristopherE" wrote:
Yes, i do have 3 wins servers installed.. And one at the exchange computer
also.
It is filled in but still won't work.
I'd be really happy if you wanted to give me the host and lmhost info.
Maybe something is wrong with the winsserver or something..
Best regards,
Chris
"Tom Perot" wrote:
I feel your pain - I had same issue and it drove me crazy for about a week.
Are you using a WINS server? If you have one installed at your org, then
make sure your VPN's entry for WINS is filled in so that it will be passed on
to your VPN client.
If you do not have a WINS server, then modify your hosts and lmhosts files
on the laptop.
I am using a PIX firewall and had the same problem connecting to a EX5.5
Server. I had to add entries to the hosts and lmhosts files due to the fact
that I did not have a WINS server at the site.
At another site in the company, I just added a W2K3 box w/ EX 2003 and WINS.
I added the WINS entry into the PIX 501 VPN screen and the laptop connects
to Ex server without a hosts or lmhosts modification.
If you need lmhosts and hosts info, reply and I will post.
"ChristopherE" wrote:
hmm no, tried without it.. same thing
"ChristopherE" wrote:
Could this have something to do with Windows SP2 Firewall?
No?
"ChristopherE" wrote:
Tried it.. but it's the same thing :(
"Robert Bird" wrote:
I do the same, though from a VPN connection on the actual laptop (PPTP). I
always use the IP Address of the Exchange server, rather than it's name and
it works fine (in this case 192.168.10.1 ).
Try that and let me know how you get on.
Rob
"ChristopherE" wrote:
I forgot to mention that i am logged in into the domain at home also with the
VPN client (it allows me to domain-login).
"ChristopherE" wrote:
Hello my friends! :)
At work i have set up a really good working Exchange 2003 Server on SBS
2003. Everything works great, but when i take my laptop home, connect with my
VPN Connection (It's an Router to Router VPN Connection) i cannot connect to
the exchange server.
I'm in the Control Panel -> Email -> Accounts thingy.
And i've put in o-server1.domain.local which my server is called.
And my email box (yes this is the exact computer that i have at work and it
works great). But then i click on "check name" or what its called (i have
swedish version). And then it takes about 20 seconds and i get an error msg
saying that the server is not online or something like that. If i disable the
VPN-connection this search only takes half of a second, so my conclusion is
that its trying to use the VPN Connection but something is wrong.
Okey now you will probabbly ask if i can ping the server by name, and i'm
sorry to say that that's no problem (which makes this alot harder imo).
ping o-server1
Svar från 192.168.10.1: byte=32 tid=21ms TTL=127
Svar från 192.168.10.1: byte=32 tid=53ms TTL=127
Svar från 192.168.10.1: byte=32 tid=71ms TTL=127
Svar från 192.168.10.1: byte=32 tid=53ms TTL=127
Also works with bigger byte, no problem at all.
ping o-server1.domain.local
Skickar signaler till o-server1.domain.local [192.168.10.1] med 32 byte data:
Svar från 192.168.10.1: byte=32 tid=21ms TTL=127
Svar från 192.168.10.1: byte=32 tid=75ms TTL=127
Svar från 192.168.10.1: byte=32 tid=30ms TTL=127
Svar från 192.168.10.1: byte=32 tid=22ms TTL=127
Also works. I can even ping my computer with name & ip from the office.
Shares works. Other programs works. Only thing that doesn't work just as on
the office is http://o-server1 it says that my ip doesn't have any access for
that (but i've fixed that by adding the ip in IIS). Maybe it has something to
do with it? Maybe not.
I'd be glad to give you any more info if you want. Ooooh. the client is
using windows XP with latest office 2003 + sp1 office + sp2 xp.
Please help me! :)
Best regards,
Christopher Engstrand |
|
|
| Back to top |
|
|
ChristopherE
Guest
|
| Posted:
Wed Jan 05, 2005 4:49 am Post subject:
RE: Exchange 2003 on SBS 2003 - VPN Connectivity Issue |
|
|
Hmm.. oki maybe you're right.
But with my calculations all ports are opened with the VPN. atleast thats
how it feels. If i open up a port it will only be opened up to the public.
Not with the VPN, right?
"Tom Perot" wrote:
| Quote: | Have you looked at
http://support.dlink.com/faq/view.asp?prod_id=1904&question=DFL-700%20/%20DFL-1100
At this point, I think that you are going to find that you had more than one
problem. I think our name resolution is ok but it appears maybe some ports
are being blocked on the firewall now. Please see above and notice if there
is a way to open up port 135, etc. on the firewall.
I would suggest temporarily unblock all tcp and udp ports on the VPN
interface. If this is a site - site VPN (hware to hware) then I would do it
temporarily on both vpns. Try again and I have confidence that it will work.
I do not see a reason to restrict down packets on a secure tunnel but you
might have a need. If you do, I will supply you with ports needed.
"ChristopherE" wrote:
I'm using DS-601 with DFL-700 firewall. Both from D-Link.
Everything else works fine. Yes o-server1 is the name.. i just did a typo in
the text :| But it is correct written in lmhosts and hosts. Exchange is on an
SBS 2003 server.
"Tom Perot" wrote:
What are you using as a vpn?
When you ping from laptop, bytes do not increase in count for inbound and
outbound stats.
Please confirm your email server name - you have o-server1 in the lmhosts
and hosts but below it says o-server in the text.
This I know is frustrating.
"ChristopherE" wrote:
Yes i can ping without any problems at all.
I've changed the lmhost and hosts file again.
Just like you wrote, with 20 placeholders also.
lmhosts
192.168.10.1 O-SERVER1 #PRE #DOM:HYMERCENTER
192.168.10.1 "HYMERCENTER \0x1b" #PRE
hosts
192.168.10.1 o-server1.hymercenter.local o-server1
Ping works on both IP and servername.. And if i do a ping -a 192.168.10.1 it
referrs to o-server1.hymercenter.local but exchange do not work :(((
It doesnt even seem to send any info through the VPN-connection (i can see
how many bytes are transmitted) when i click for it to connect.
Exchange server is called o-server with IP 192.168.10.1 and domain is
hymercenter.local. I'm using IP# 192.168.30.1 on the VPN-computer which is
pingable from the exchange-server. All other datatransmits works.
Any more help available? :|
"Tom Perot" wrote:
Before you check the following statements, please answer the following:
Can you ping the ip address of the mail server via the VPN connection from
your laptop? (i.e. ping 192.168.2.2)
lmhosts
192.168.2.2 WW-1-W2K3-SVR #PRE #DOM:CR
192.168.2.2 "CR \0x1b" #PRE
------
hosts
192.168.2.2 ww-1-w2k3-svr.cr.local ww-1-w2k3-svr
192.168.2.2 is ip address of mail server
Server name is ww-1-w2k3-svr
Domain is cr.local
Take off the .local in the two places in the hosts file leaving only CR
I just tested this config on a new W2K3/Ex 2003 site with a new customer and
it worked as well as previously on 5.5 servers.
"ChristopherE" wrote:
Hmm no, didn't work either.. this is getting really enoying :D
One question: dd-222-svr.dh.com is that a domain? should i replace that with
o-server1.domain.local or something else? :)
"Tom Perot" wrote:
Look at Article ID : 155048 and Article ID : 837391
In addition, I had luck with adding the following statements. Notice the
lmhosts statement has to have exactly 20 placeholders between the quotes.
Copy and paste these statements and modify.
Server name - dd-222-svr
Windows Domain - DD
Hosts file
192.168.1.2 dd-222-svr.dh.com dd-222-svr
Lmhosts file
192.168.1.2 DD-222-SVR #PRE #DOM:DD
192.168.1.2 "DD \0x1b" #PRE
"ChristopherE" wrote:
Yes, i do have 3 wins servers installed.. And one at the exchange computer
also.
It is filled in but still won't work.
I'd be really happy if you wanted to give me the host and lmhost info.
Maybe something is wrong with the winsserver or something..
Best regards,
Chris
"Tom Perot" wrote:
I feel your pain - I had same issue and it drove me crazy for about a week.
Are you using a WINS server? If you have one installed at your org, then
make sure your VPN's entry for WINS is filled in so that it will be passed on
to your VPN client.
If you do not have a WINS server, then modify your hosts and lmhosts files
on the laptop.
I am using a PIX firewall and had the same problem connecting to a EX5.5
Server. I had to add entries to the hosts and lmhosts files due to the fact
that I did not have a WINS server at the site.
At another site in the company, I just added a W2K3 box w/ EX 2003 and WINS.
I added the WINS entry into the PIX 501 VPN screen and the laptop connects
to Ex server without a hosts or lmhosts modification.
If you need lmhosts and hosts info, reply and I will post.
"ChristopherE" wrote:
hmm no, tried without it.. same thing
"ChristopherE" wrote:
Could this have something to do with Windows SP2 Firewall?
No?
"ChristopherE" wrote:
Tried it.. but it's the same thing :(
"Robert Bird" wrote:
I do the same, though from a VPN connection on the actual laptop (PPTP). I
always use the IP Address of the Exchange server, rather than it's name and
it works fine (in this case 192.168.10.1 ).
Try that and let me know how you get on.
Rob
"ChristopherE" wrote:
I forgot to mention that i am logged in into the domain at home also with the
VPN client (it allows me to domain-login).
"ChristopherE" wrote:
Hello my friends! :)
At work i have set up a really good working Exchange 2003 Server on SBS
2003. Everything works great, but when i take my laptop home, connect with my
VPN Connection (It's an Router to Router VPN Connection) i cannot connect to
the exchange server.
I'm in the Control Panel -> Email -> Accounts thingy.
And i've put in o-server1.domain.local which my server is called.
And my email box (yes this is the exact computer that i have at work and it
works great). But then i click on "check name" or what its called (i have
swedish version). And then it takes about 20 seconds and i get an error msg
saying that the server is not online or something like that. If i disable the
VPN-connection this search only takes half of a second, so my conclusion is
that its trying to use the VPN Connection but something is wrong.
Okey now you will probabbly ask if i can ping the server by name, and i'm
sorry to say that that's no problem (which makes this alot harder imo).
ping o-server1
Svar från 192.168.10.1: byte=32 tid=21ms TTL=127
Svar från 192.168.10.1: byte=32 tid=53ms TTL=127
Svar från 192.168.10.1: byte=32 tid=71ms TTL=127
Svar från 192.168.10.1: byte=32 tid=53ms TTL=127
Also works with bigger byte, no problem at all.
ping o-server1.domain.local
Skickar signaler till o-server1.domain.local [192.168.10.1] med 32 byte data:
Svar från 192.168.10.1: byte=32 tid=21ms TTL=127
Svar från 192.168.10.1: byte=32 tid=75ms TTL=127
Svar från 192.168.10.1: byte=32 tid=30ms TTL=127
Svar från 192.168.10.1: byte=32 tid=22ms TTL=127
Also works. I can even ping my computer with name & ip from the office.
Shares works. Other programs works. Only thing that doesn't work just as on
the office is http://o-server1 it says that my ip doesn't have any access for
that (but i've fixed that by adding the ip in IIS). Maybe it has something to
do with it? Maybe not.
I'd be glad to give you any more info if you want. Ooooh. the client is
using windows XP with latest office 2003 + sp1 office + sp2 xp.
Please help me! :)
Best regards,
Christopher Engstrand |
|
|
| Back to top |
|
|
ChristopherE
Guest
|
| Posted:
Wed Jan 05, 2005 4:51 am Post subject:
RE: Exchange 2003 on SBS 2003 - VPN Connectivity Issue |
|
|
"All VPN-related traffic is currently allowed. Policies for VPN-related
traffic may be enabled under the Global policy parameters, above. "
"Tom Perot" wrote:
| Quote: | Have you looked at
http://support.dlink.com/faq/view.asp?prod_id=1904&question=DFL-700%20/%20DFL-1100
At this point, I think that you are going to find that you had more than one
problem. I think our name resolution is ok but it appears maybe some ports
are being blocked on the firewall now. Please see above and notice if there
is a way to open up port 135, etc. on the firewall.
I would suggest temporarily unblock all tcp and udp ports on the VPN
interface. If this is a site - site VPN (hware to hware) then I would do it
temporarily on both vpns. Try again and I have confidence that it will work.
I do not see a reason to restrict down packets on a secure tunnel but you
might have a need. If you do, I will supply you with ports needed.
"ChristopherE" wrote:
I'm using DS-601 with DFL-700 firewall. Both from D-Link.
Everything else works fine. Yes o-server1 is the name.. i just did a typo in
the text :| But it is correct written in lmhosts and hosts. Exchange is on an
SBS 2003 server.
"Tom Perot" wrote:
What are you using as a vpn?
When you ping from laptop, bytes do not increase in count for inbound and
outbound stats.
Please confirm your email server name - you have o-server1 in the lmhosts
and hosts but below it says o-server in the text.
This I know is frustrating.
"ChristopherE" wrote:
Yes i can ping without any problems at all.
I've changed the lmhost and hosts file again.
Just like you wrote, with 20 placeholders also.
lmhosts
192.168.10.1 O-SERVER1 #PRE #DOM:HYMERCENTER
192.168.10.1 "HYMERCENTER \0x1b" #PRE
hosts
192.168.10.1 o-server1.hymercenter.local o-server1
Ping works on both IP and servername.. And if i do a ping -a 192.168.10.1 it
referrs to o-server1.hymercenter.local but exchange do not work :(((
It doesnt even seem to send any info through the VPN-connection (i can see
how many bytes are transmitted) when i click for it to connect.
Exchange server is called o-server with IP 192.168.10.1 and domain is
hymercenter.local. I'm using IP# 192.168.30.1 on the VPN-computer which is
pingable from the exchange-server. All other datatransmits works.
Any more help available? :|
"Tom Perot" wrote:
Before you check the following statements, please answer the following:
Can you ping the ip address of the mail server via the VPN connection from
your laptop? (i.e. ping 192.168.2.2)
lmhosts
192.168.2.2 WW-1-W2K3-SVR #PRE #DOM:CR
192.168.2.2 "CR \0x1b" #PRE
------
hosts
192.168.2.2 ww-1-w2k3-svr.cr.local ww-1-w2k3-svr
192.168.2.2 is ip address of mail server
Server name is ww-1-w2k3-svr
Domain is cr.local
Take off the .local in the two places in the hosts file leaving only CR
I just tested this config on a new W2K3/Ex 2003 site with a new customer and
it worked as well as previously on 5.5 servers.
"ChristopherE" wrote:
Hmm no, didn't work either.. this is getting really enoying :D
One question: dd-222-svr.dh.com is that a domain? should i replace that with
o-server1.domain.local or something else? :)
"Tom Perot" wrote:
Look at Article ID : 155048 and Article ID : 837391
In addition, I had luck with adding the following statements. Notice the
lmhosts statement has to have exactly 20 placeholders between the quotes.
Copy and paste these statements and modify.
Server name - dd-222-svr
Windows Domain - DD
Hosts file
192.168.1.2 dd-222-svr.dh.com dd-222-svr
Lmhosts file
192.168.1.2 DD-222-SVR #PRE #DOM:DD
192.168.1.2 "DD \0x1b" #PRE
"ChristopherE" wrote:
Yes, i do have 3 wins servers installed.. And one at the exchange computer
also.
It is filled in but still won't work.
I'd be really happy if you wanted to give me the host and lmhost info.
Maybe something is wrong with the winsserver or something..
Best regards,
Chris
"Tom Perot" wrote:
I feel your pain - I had same issue and it drove me crazy for about a week.
Are you using a WINS server? If you have one installed at your org, then
make sure your VPN's entry for WINS is filled in so that it will be passed on
to your VPN client.
If you do not have a WINS server, then modify your hosts and lmhosts files
on the laptop.
I am using a PIX firewall and had the same problem connecting to a EX5.5
Server. I had to add entries to the hosts and lmhosts files due to the fact
that I did not have a WINS server at the site.
At another site in the company, I just added a W2K3 box w/ EX 2003 and WINS.
I added the WINS entry into the PIX 501 VPN screen and the laptop connects
to Ex server without a hosts or lmhosts modification.
If you need lmhosts and hosts info, reply and I will post.
"ChristopherE" wrote:
hmm no, tried without it.. same thing
"ChristopherE" wrote:
Could this have something to do with Windows SP2 Firewall?
No?
"ChristopherE" wrote:
Tried it.. but it's the same thing :(
"Robert Bird" wrote:
I do the same, though from a VPN connection on the actual laptop (PPTP). I
always use the IP Address of the Exchange server, rather than it's name and
it works fine (in this case 192.168.10.1 ).
Try that and let me know how you get on.
Rob
"ChristopherE" wrote:
I forgot to mention that i am logged in into the domain at home also with the
VPN client (it allows me to domain-login).
"ChristopherE" wrote:
Hello my friends! :)
At work i have set up a really good working Exchange 2003 Server on SBS
2003. Everything works great, but when i take my laptop home, connect with my
VPN Connection (It's an Router to Router VPN Connection) i cannot connect to
the exchange server.
I'm in the Control Panel -> Email -> Accounts thingy.
And i've put in o-server1.domain.local which my server is called.
And my email box (yes this is the exact computer that i have at work and it
works great). But then i click on "check name" or what its called (i have
swedish version). And then it takes about 20 seconds and i get an error msg
saying that the server is not online or something like that. If i disable the
VPN-connection this search only takes half of a second, so my conclusion is
that its trying to use the VPN Connection but something is wrong.
Okey now you will probabbly ask if i can ping the server by name, and i'm
sorry to say that that's no problem (which makes this alot harder imo).
ping o-server1
Svar från 192.168.10.1: byte=32 tid=21ms TTL=127
Svar från 192.168.10.1: byte=32 tid=53ms TTL=127
Svar från 192.168.10.1: byte=32 tid=71ms TTL=127
Svar från 192.168.10.1: byte=32 tid=53ms TTL=127
Also works with bigger byte, no problem at all.
ping o-server1.domain.local
Skickar signaler till o-server1.domain.local [192.168.10.1] med 32 byte data:
Svar från 192.168.10.1: byte=32 tid=21ms TTL=127
Svar från 192.168.10.1: byte=32 tid=75ms TTL=127
Svar från 192.168.10.1: byte=32 tid=30ms TTL=127
Svar från 192.168.10.1: byte=32 tid=22ms TTL=127
Also works. I can even ping my computer with name & ip from the office.
Shares works. Other programs works. Only thing that doesn't work just as on
the office is http://o-server1 it says that my ip doesn't have any access for
that (but i've fixed that by adding the ip in IIS). Maybe it has something to
do with it? Maybe not.
I'd be glad to give you any more info if you want. Ooooh. the client is
using windows XP with latest office 2003 + sp1 office + sp2 xp.
Please help me! :)
Best regards,
Christopher Engstrand |
|
|
| Back to top |
|
|
|
|
|
|
FAQ
Memberlist
Register
Profile
Log in to check your private messages
Log in