VPN on Windows Server 2003 behind a D-Link DI-524 Router

  • Thread starter Thread starter roma086
  • Start date Start date
R

roma086

I have a win2k3 server set up as a VPN server (Remote access server
role) operating behind a D-Link router. The problem is as follows:

Connecting with VPN (set up using Windows XP VPN network connection)
works when the client is behind the same router as the VPN server (same
subnet) works perfectly.

Connecting from an external client (just outside of the router) does
not work... it spends about 30 seconds on "Verifying username and
password" and then stops at:
Error 721: The remote computer did not respond...

On the server side I find the following log info in IPRouterManager.log
right after I get the
721 error message:

[1004] 22:10:19: Error adding route, Stack bit == 0
[1004] 22:10:19: ProcessDefaultRouteChanges: Not default route (ip
address is here in log file)/32

I set up the router as follows:
1) Port forward TCP 1723 to the server on the router that the server is
behind.
2) Likewise for UDP 500
3) Enable PPTP and IPSec pass-through

I've also used Windows XP Support Tools pptpsrv and pptp client and
tested that PPTP and GRE packets are being transferred ok.

Can anyone help me out? I've tried so many different things..

I'm hoping a Microsoft networking MVP can find this post and figure it
out!

Thanks in advance..
 
Do a simple test. Can you telnet port 1723 from outside? or check this troubleshooting page.

VPN error 721 Error 721: Remote PPP peer or computer is not responding. Resolution: If you have tried many thing other people suggest like rebooting, reloading hardware ...
www.howtonetworking.com/vpnissues/error721.htm


Bob Lin, MS-MVP, MCSE & CNE
Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
I have a win2k3 server set up as a VPN server (Remote access server
role) operating behind a D-Link router. The problem is as follows:

Connecting with VPN (set up using Windows XP VPN network connection)
works when the client is behind the same router as the VPN server (same
subnet) works perfectly.

Connecting from an external client (just outside of the router) does
not work... it spends about 30 seconds on "Verifying username and
password" and then stops at:
Error 721: The remote computer did not respond...

On the server side I find the following log info in IPRouterManager.log
right after I get the
721 error message:

[1004] 22:10:19: Error adding route, Stack bit == 0
[1004] 22:10:19: ProcessDefaultRouteChanges: Not default route (ip
address is here in log file)/32

I set up the router as follows:
1) Port forward TCP 1723 to the server on the router that the server is
behind.
2) Likewise for UDP 500
3) Enable PPTP and IPSec pass-through

I've also used Windows XP Support Tools pptpsrv and pptp client and
tested that PPTP and GRE packets are being transferred ok.

Can anyone help me out? I've tried so many different things..

I'm hoping a Microsoft networking MVP can find this post and figure it
out!

Thanks in advance..
 
Thanks for the reply... I could telnet fine... I ran the pptpsrv and
pptp client and they confirmed port 1723 and protocol 47 (GRE) are
working..

I went to that site, and I tried rebooting and re-creating the VPN
connection.. to no avail.

I'm pretty sure software firewall on my DI-524 router is disabled.

How can I check DHCP settings, and what should I look out for?
 
assuming TCP 1723 and GRE are open on the router, can you establish VPN internally?

Bob Lin, MS-MVP, MCSE & CNE
Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
Thanks for the reply... I could telnet fine... I ran the pptpsrv and
pptp client and they confirmed port 1723 and protocol 47 (GRE) are
working..

I went to that site, and I tried rebooting and re-creating the VPN
connection.. to no avail.

I'm pretty sure software firewall on my DI-524 router is disabled.

How can I check DHCP settings, and what should I look out for?
 
Internally, putting a client right outside of the router still does not
work.

Putting a client on the same subnet as the server (behind the same
aforementioned router)
works perfectly.

It SEEMS that the firewall is blocking it... but I don't understand
why, since both GRE
and PPTP tested fine with Microsoft's own testing tools (pptpsrv,
pptpclient)

Thank you for your help!
 
Back
Top