|
|
I have a remote office that connects to our server using the software
firewall connection. When I add a new user the cannot connect because the
client connection is not yet established. If the firewall connecton was
established they would be able to connect. How do I add them remotely?
|
|
Rod wrote:
[Quoted Text] > I have a remote office that connects to our server using the software
> firewall connection. When I add a new user the cannot connect because
> the client connection is not yet established. If the firewall
> connecton was established they would be able to connect. How do I add
> them remotely?
I suggest you connect this office's network to yours via VPN or leased
line - and if it's big enough to warrant it, even put a local DC in there.
VPN client software on individual computers is not the best option when
you've got a remote office.
|
|
Hi Rod -
Just to re-cap so I make sure I understand your question - you need to set
up a new domain user on a remote PC (get the user logged in for the first
time, etc.) - but you're using the Windows-based VPN connection and you need
the VPN active in order to authenticate the user to get them logged in on
the remote machine, correct?
Here's what you need to do: make sure that your VPN connectoid is installed
for All Users. It's been a while since I've used the SBS pre-built VPN
connectoid, but if I remember correctly it only installs for a single user.
The easiest method here is to just create a new VPN connectoid back to your
SBS that is available to all users.
Once you have a VPN connectoid that is available to all users, when you log
in to the PC you can initiate that VPN connection before you log in. On a
Windows XP box, click the Options button at the login screen, then check the
option box to log in via dial-up networking. When you click OK to log in,
Windows will let you select your VPN connectoid and establish the VPN
connection before processing the login, thus allowing the new user to be
authenticated against the domain.
The process works the same in Vista - when you're at the login screen, you
will have a blue Network Login button in the bottom right corner of the
screen. Click this to establish your VPN conneection before you attempt to
log in to the machine/domain.
HTH!
--
Chad A Gross
http://www.msmvps.com/blogs/cgross
"Rod" <Rod[ at ]discussions.microsoft.com> wrote in message
news:A133DFC6-199C-49D4-9A6C-8773A0507765[ at ]microsoft.com...
[Quoted Text] >I have a remote office that connects to our server using the software
> firewall connection. When I add a new user the cannot connect because the
> client connection is not yet established. If the firewall connecton was
> established they would be able to connect. How do I add them remotely?
|
|
Argh. Thats another subject. I can get the connection established but I can't
gete the remote computers to see the server
"Lanwench [MVP - Exchange]" wrote:
[Quoted Text] > Rod wrote:
> > I have a remote office that connects to our server using the software
> > firewall connection. When I add a new user the cannot connect because
> > the client connection is not yet established. If the firewall
> > connecton was established they would be able to connect. How do I add
> > them remotely?
>
> I suggest you connect this office's network to yours via VPN or leased
> line - and if it's big enough to warrant it, even put a local DC in there.
> VPN client software on individual computers is not the best option when
> you've got a remote office.
>
>
>
|
|
Rod wrote:
[Quoted Text] > Argh. Thats another subject. I can get the connection established but
> I can't gete the remote computers to see the server
What do you mean by "see" ? Check your DNS (IPs and suffix). If you want to
browse a la network neighborhood, you'll need a WINS server in each
location.
>
> "Lanwench [MVP - Exchange]" wrote:
>
>> Rod wrote:
>>> I have a remote office that connects to our server using the
>>> software firewall connection. When I add a new user the cannot
>>> connect because the client connection is not yet established. If
>>> the firewall connecton was established they would be able to
>>> connect. How do I add them remotely?
>>
>> I suggest you connect this office's network to yours via VPN or
>> leased line - and if it's big enough to warrant it, even put a local
>> DC in there. VPN client software on individual computers is not the
>> best option when you've got a remote office.
|
|
I think we need a better description of your remote office (equipment,
workstations operating system, number of users, type/speed of broadband
Internet access, etc.) and the same for your main office. Also, what are
your goals for the remote users (email access, file sharing. etc.).
--
Merv Porter [SBS-MVP]
============================
"Rod" <Rod[ at ]discussions.microsoft.com> wrote in message
news:D2B905D9-26B2-40D7-8A96-7A4D0885F8C9[ at ]microsoft.com...
[Quoted Text] > Argh. Thats another subject. I can get the connection established but I
> can't
> gete the remote computers to see the server
>
> "Lanwench [MVP - Exchange]" wrote:
>
>> Rod wrote:
>> > I have a remote office that connects to our server using the software
>> > firewall connection. When I add a new user the cannot connect because
>> > the client connection is not yet established. If the firewall
>> > connecton was established they would be able to connect. How do I add
>> > them remotely?
>>
>> I suggest you connect this office's network to yours via VPN or leased
>> line - and if it's big enough to warrant it, even put a local DC in
>> there.
>> VPN client software on individual computers is not the best option when
>> you've got a remote office.
>>
>>
>>
|
|
My home network is an sbs 35 user network with a netgear firewall and a
wireless internet connection (i believe it is 2gb/1gb) the remote location is
3-4 users and a netgear router nad cable internet. They wish to have outlook
internet and access to files on the company folder (shared excel sheets).
Right now they use the software firewall and all works pretty well. it'a a
little slow.
"Merv Porter [SBS-MVP]" wrote:
[Quoted Text] > I think we need a better description of your remote office (equipment,
> workstations operating system, number of users, type/speed of broadband
> Internet access, etc.) and the same for your main office. Also, what are
> your goals for the remote users (email access, file sharing. etc.).
>
> --
> Merv Porter [SBS-MVP]
> ============================
>
> "Rod" <Rod[ at ]discussions.microsoft.com> wrote in message
> news:D2B905D9-26B2-40D7-8A96-7A4D0885F8C9[ at ]microsoft.com...
> > Argh. Thats another subject. I can get the connection established but I
> > can't
> > gete the remote computers to see the server
> >
> > "Lanwench [MVP - Exchange]" wrote:
> >
> >> Rod wrote:
> >> > I have a remote office that connects to our server using the software
> >> > firewall connection. When I add a new user the cannot connect because
> >> > the client connection is not yet established. If the firewall
> >> > connecton was established they would be able to connect. How do I add
> >> > them remotely?
> >>
> >> I suggest you connect this office's network to yours via VPN or leased
> >> line - and if it's big enough to warrant it, even put a local DC in
> >> there.
> >> VPN client software on individual computers is not the best option when
> >> you've got a remote office.
> >>
> >>
> >>
>
>
>
|
|
I mean "do anything with" They can't log on to the server they can't connect
for mail, they can't get to company folders. The vpn seemed easy enough to
establish as far as the routers being connected but beyond that I don't
understand what to do next.
"Lanwench [MVP - Exchange]" wrote:
[Quoted Text] > Rod wrote:
> > Argh. Thats another subject. I can get the connection established but
> > I can't gete the remote computers to see the server
>
> What do you mean by "see" ? Check your DNS (IPs and suffix). If you want to
> browse a la network neighborhood, you'll need a WINS server in each
> location.
> >
> > "Lanwench [MVP - Exchange]" wrote:
> >
> >> Rod wrote:
> >>> I have a remote office that connects to our server using the
> >>> software firewall connection. When I add a new user the cannot
> >>> connect because the client connection is not yet established. If
> >>> the firewall connecton was established they would be able to
> >>> connect. How do I add them remotely?
> >>
> >> I suggest you connect this office's network to yours via VPN or
> >> leased line - and if it's big enough to warrant it, even put a local
> >> DC in there. VPN client software on individual computers is not the
> >> best option when you've got a remote office.
>
>
>
>
|
|
You've mentioned a "software firewall" a couple of times. What are you
referring to?
--
Merv Porter [SBS-MVP]
============================
"Rod" <Rod[ at ]discussions.microsoft.com> wrote in message
news:C8E008D8-9BA2-4459-BE64-6D9394FD4A7A[ at ]microsoft.com...
[Quoted Text] > My home network is an sbs 35 user network with a netgear firewall and a
> wireless internet connection (i believe it is 2gb/1gb) the remote location
> is
> 3-4 users and a netgear router nad cable internet. They wish to have
> outlook
> internet and access to files on the company folder (shared excel sheets).
>
> Right now they use the software firewall and all works pretty well. it'a a
> little slow.
>
> "Merv Porter [SBS-MVP]" wrote:
>
>> I think we need a better description of your remote office (equipment,
>> workstations operating system, number of users, type/speed of broadband
>> Internet access, etc.) and the same for your main office. Also, what are
>> your goals for the remote users (email access, file sharing. etc.).
>>
>> --
>> Merv Porter [SBS-MVP]
>> ============================
>>
>> "Rod" <Rod[ at ]discussions.microsoft.com> wrote in message
>> news:D2B905D9-26B2-40D7-8A96-7A4D0885F8C9[ at ]microsoft.com...
>> > Argh. Thats another subject. I can get the connection established but I
>> > can't
>> > gete the remote computers to see the server
>> >
>> > "Lanwench [MVP - Exchange]" wrote:
>> >
>> >> Rod wrote:
>> >> > I have a remote office that connects to our server using the
>> >> > software
>> >> > firewall connection. When I add a new user the cannot connect
>> >> > because
>> >> > the client connection is not yet established. If the firewall
>> >> > connecton was established they would be able to connect. How do I
>> >> > add
>> >> > them remotely?
>> >>
>> >> I suggest you connect this office's network to yours via VPN or leased
>> >> line - and if it's big enough to warrant it, even put a local DC in
>> >> there.
>> >> VPN client software on individual computers is not the best option
>> >> when
>> >> you've got a remote office.
>> >>
>> >>
>> >>
>>
>>
>>
|
|
I have a long story on routing here. Maybe it will give you some clues
about routing tables and firewall exceptions. It may not but I also
have on my blog something about opening the XP firewall to allow other
ip networks and maybe a short note about turning on logging in th
efirewall to see if you have any clues. I also use Wireshark on a
workstation to monitor what is going on.
http://msmvps.com/blogs/bgb/archive/2007/02/15/isa-site-to-site-vpn-routing-tables.aspx
On Tue, 30 Dec 2008 04:22:01 -0800, Rod
<Rod[ at ]discussions.microsoft.com> wrote:
[Quoted Text] >I mean "do anything with" They can't log on to the server they can't connect
>for mail, they can't get to company folders. The vpn seemed easy enough to
>establish as far as the routers being connected but beyond that I don't
>understand what to do next.
>
>"Lanwench [MVP - Exchange]" wrote:
>
>> Rod wrote:
>> > Argh. Thats another subject. I can get the connection established but
>> > I can't gete the remote computers to see the server
>>
>> What do you mean by "see" ? Check your DNS (IPs and suffix). If you want to
>> browse a la network neighborhood, you'll need a WINS server in each
>> location.
>> >
>> > "Lanwench [MVP - Exchange]" wrote:
>> >
>> >> Rod wrote:
>> >>> I have a remote office that connects to our server using the
>> >>> software firewall connection. When I add a new user the cannot
>> >>> connect because the client connection is not yet established. If
>> >>> the firewall connecton was established they would be able to
>> >>> connect. How do I add them remotely?
>> >>
>> >> I suggest you connect this office's network to yours via VPN or
>> >> leased line - and if it's big enough to warrant it, even put a local
>> >> DC in there. VPN client software on individual computers is not the
>> >> best option when you've got a remote office.
>>
>>
>>
>>
See what SBS support is working on
http://blogs.technet.com/sbs/default.aspx
Check your SBS with the SBS Best Practices Analyzer
http://blogs.technet.com/sbs/archive/tags/BPA/default.aspx
|
|
my bad, software VPN, the clien connection
"Merv Porter [SBS-MVP]" wrote:
[Quoted Text] > You've mentioned a "software firewall" a couple of times. What are you
> referring to?
>
> --
> Merv Porter [SBS-MVP]
> ============================
>
> "Rod" <Rod[ at ]discussions.microsoft.com> wrote in message
> news:C8E008D8-9BA2-4459-BE64-6D9394FD4A7A[ at ]microsoft.com...
> > My home network is an sbs 35 user network with a netgear firewall and a
> > wireless internet connection (i believe it is 2gb/1gb) the remote location
> > is
> > 3-4 users and a netgear router nad cable internet. They wish to have
> > outlook
> > internet and access to files on the company folder (shared excel sheets).
> >
> > Right now they use the software firewall and all works pretty well. it'a a
> > little slow.
> >
> > "Merv Porter [SBS-MVP]" wrote:
> >
> >> I think we need a better description of your remote office (equipment,
> >> workstations operating system, number of users, type/speed of broadband
> >> Internet access, etc.) and the same for your main office. Also, what are
> >> your goals for the remote users (email access, file sharing. etc.).
> >>
> >> --
> >> Merv Porter [SBS-MVP]
> >> ============================
> >>
> >> "Rod" <Rod[ at ]discussions.microsoft.com> wrote in message
> >> news:D2B905D9-26B2-40D7-8A96-7A4D0885F8C9[ at ]microsoft.com...
> >> > Argh. Thats another subject. I can get the connection established but I
> >> > can't
> >> > gete the remote computers to see the server
> >> >
> >> > "Lanwench [MVP - Exchange]" wrote:
> >> >
> >> >> Rod wrote:
> >> >> > I have a remote office that connects to our server using the
> >> >> > software
> >> >> > firewall connection. When I add a new user the cannot connect
> >> >> > because
> >> >> > the client connection is not yet established. If the firewall
> >> >> > connecton was established they would be able to connect. How do I
> >> >> > add
> >> >> > them remotely?
> >> >>
> >> >> I suggest you connect this office's network to yours via VPN or leased
> >> >> line - and if it's big enough to warrant it, even put a local DC in
> >> >> there.
> >> >> VPN client software on individual computers is not the best option
> >> >> when
> >> >> you've got a remote office.
> >> >>
> >> >>
> >> >>
> >>
> >>
> >>
>
>
>
|
|
Rod wrote:
[Quoted Text] > I mean "do anything with" They can't log on to the server they can't
> connect for mail, they can't get to company folders. The vpn seemed
> easy enough to establish as far as the routers being connected but
> beyond that I don't understand what to do next.
Without knowing your setup it's hard to do much with this....you didn't give
us much to go on. How about an unedited ipconfig /all from a client on that
network, and from your SBS server?
>
> "Lanwench [MVP - Exchange]" wrote:
>
>> Rod wrote:
>>> Argh. Thats another subject. I can get the connection established
>>> but I can't gete the remote computers to see the server
>>
>> What do you mean by "see" ? Check your DNS (IPs and suffix). If you
>> want to browse a la network neighborhood, you'll need a WINS server
>> in each location.
>>>
>>> "Lanwench [MVP - Exchange]" wrote:
>>>
>>>> Rod wrote:
>>>>> I have a remote office that connects to our server using the
>>>>> software firewall connection. When I add a new user the cannot
>>>>> connect because the client connection is not yet established. If
>>>>> the firewall connecton was established they would be able to
>>>>> connect. How do I add them remotely?
>>>>
>>>> I suggest you connect this office's network to yours via VPN or
>>>> leased line - and if it's big enough to warrant it, even put a
>>>> local DC in there. VPN client software on individual computers is
>>>> not the best option when you've got a remote office.
|
|
Rod wrote:
[Quoted Text] > my bad, software VPN, the clien connection
Hi - it will be much easier if you stick to one 'leg' in this thread so we
aren't all stepping on each others' toes. Pick one :-)
>
> "Merv Porter [SBS-MVP]" wrote:
>
>> You've mentioned a "software firewall" a couple of times. What are
>> you referring to?
>>
>> --
>> Merv Porter [SBS-MVP]
>> ============================
>>
>> "Rod" <Rod[ at ]discussions.microsoft.com> wrote in message
>> news:C8E008D8-9BA2-4459-BE64-6D9394FD4A7A[ at ]microsoft.com...
>>> My home network is an sbs 35 user network with a netgear firewall
>>> and a wireless internet connection (i believe it is 2gb/1gb) the
>>> remote location is
>>> 3-4 users and a netgear router nad cable internet. They wish to have
>>> outlook
>>> internet and access to files on the company folder (shared excel
>>> sheets).
>>>
>>> Right now they use the software firewall and all works pretty well.
>>> it'a a little slow.
>>>
>>> "Merv Porter [SBS-MVP]" wrote:
>>>
>>>> I think we need a better description of your remote office
>>>> (equipment, workstations operating system, number of users,
>>>> type/speed of broadband Internet access, etc.) and the same for
>>>> your main office. Also, what are your goals for the remote users
>>>> (email access, file sharing. etc.).
>>>>
>>>> --
>>>> Merv Porter [SBS-MVP]
>>>> ============================
>>>>
>>>> "Rod" <Rod[ at ]discussions.microsoft.com> wrote in message
>>>> news:D2B905D9-26B2-40D7-8A96-7A4D0885F8C9[ at ]microsoft.com...
>>>>> Argh. Thats another subject. I can get the connection established
>>>>> but I can't
>>>>> gete the remote computers to see the server
>>>>>
>>>>> "Lanwench [MVP - Exchange]" wrote:
>>>>>
>>>>>> Rod wrote:
>>>>>>> I have a remote office that connects to our server using the
>>>>>>> software
>>>>>>> firewall connection. When I add a new user the cannot connect
>>>>>>> because
>>>>>>> the client connection is not yet established. If the firewall
>>>>>>> connecton was established they would be able to connect. How do
>>>>>>> I add
>>>>>>> them remotely?
>>>>>>
>>>>>> I suggest you connect this office's network to yours via VPN or
>>>>>> leased line - and if it's big enough to warrant it, even put a
>>>>>> local DC in there.
>>>>>> VPN client software on individual computers is not the best
>>>>>> option when
>>>>>> you've got a remote office.
|
|
Microsoft Windows [Version 5.2.3790]
(C) Copyright 1985-2003 Microsoft Corp.
Server IP config (note one network is used the other is disabled)
Windows IP Configuration
Host Name . . . . . . . . . . . . : water
Primary Dns Suffix . . . . . . . : Eichelbergers.local
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : Yes
WINS Proxy Enabled. . . . . . . . : Yes
DNS Suffix Search List. . . . . . : Eichelbergers.local
PPP adapter RAS Server (Dial In) Interface:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : WAN (PPP/SLIP) Interface
Physical Address. . . . . . . . . : 00-53-45-00-00-00
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.16.84
Subnet Mask . . . . . . . . . . . : 255.255.255.255
Default Gateway . . . . . . . . . :
NetBIOS over Tcpip. . . . . . . . : Disabled
Ethernet adapter Server Local Area Connection:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : HP NC7781 Gigabit Server Adapter
Physical Address. . . . . . . . . : 00-0E-7F-AC-94-2A
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.16.3
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.16.5
DNS Servers . . . . . . . . . . . : 192.168.16.3
Primary WINS Server . . . . . . . : 192.168.16.3
remote machine ip config
Microsoft Windows XP [Version 5.1.2600]
(C) Copyright 1985-2001 Microsoft Corp.
C:\Documents and Settings\Administrator.WELL>ipconfig /all
Windows IP Configuration
Host Name . . . . . . . . . . . . : C596S
Primary Dns Suffix . . . . . . . : Eichelbergers.local
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : Eichelbergers.local
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel(R) PRO/100 VE Network
Connecti
on
Physical Address. . . . . . . . . : 00-0F-FE-B3-EF-D2
Dhcp Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IP Address. . . . . . . . . . . . : 192.168.17.4
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.17.1
DHCP Server . . . . . . . . . . . : 192.168.17.1
DNS Servers . . . . . . . . . . . : 68.87.75.194
68.87.64.146
Lease Obtained. . . . . . . . . . : Tuesday, December 30, 2008
9:08:22 A
M
Lease Expires . . . . . . . . . . : Wednesday, December 31, 2008
9:08:22
AM
C:\Documents and Settings\Administrator.WELL>
"Lanwench [MVP - Exchange]" wrote:
[Quoted Text] > Rod wrote:
> > I mean "do anything with" They can't log on to the server they can't
> > connect for mail, they can't get to company folders. The vpn seemed
> > easy enough to establish as far as the routers being connected but
> > beyond that I don't understand what to do next.
>
> Without knowing your setup it's hard to do much with this....you didn't give
> us much to go on. How about an unedited ipconfig /all from a client on that
> network, and from your SBS server?
>
>
> >
> > "Lanwench [MVP - Exchange]" wrote:
> >
> >> Rod wrote:
> >>> Argh. Thats another subject. I can get the connection established
> >>> but I can't gete the remote computers to see the server
> >>
> >> What do you mean by "see" ? Check your DNS (IPs and suffix). If you
> >> want to browse a la network neighborhood, you'll need a WINS server
> >> in each location.
> >>>
> >>> "Lanwench [MVP - Exchange]" wrote:
> >>>
> >>>> Rod wrote:
> >>>>> I have a remote office that connects to our server using the
> >>>>> software firewall connection. When I add a new user the cannot
> >>>>> connect because the client connection is not yet established. If
> >>>>> the firewall connecton was established they would be able to
> >>>>> connect. How do I add them remotely?
> >>>>
> >>>> I suggest you connect this office's network to yours via VPN or
> >>>> leased line - and if it's big enough to warrant it, even put a
> >>>> local DC in there. VPN client software on individual computers is
> >>>> not the best option when you've got a remote office.
>
>
>
>
|
|
|