Re: Access to remote ISA 2004 server via RDP no longer working
- From: "Thomas W Shinder" <tshinder@xxxxxxxxxxx>
- To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
- Date: Sun, 19 Feb 2006 13:19:23 -0600
You know, I could have sworn I wrote an article on ISAserver.org on how
to do this :))
Yep, I did.
Tom
Thomas W Shinder, M.D.
Site: www.isaserver.org
Blog: http://blogs.isaserver.org/shinder/
Book: http://tinyurl.com/3xqb7
MVP -- ISA Firewalls
-----Original Message-----
From: Anthony [mailto:anthony@xxxxxxxxxxxxxxxxxxxx]
Sent: Sunday, February 19, 2006 1:17 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] Re: Access to remote ISA 2004 server via RDP no
longer working
http://www.ISAserver.org
Rob,
I had a recent problem on my SBS Server (which has ISA 2004 SP1) where
RDP
was acting up. This problem seemed to appear after I ran some automatic
updates, but I can not be 100% certain. Right about the same time my
system
log went corrupt, which I had to get a hotfix from ms pss to resolve.
This
of course complicated the resolution of the RDP issue until I had an
error to
work with that I could research.
The resolution in my case was fairly simple. I went into the Terminal
Services Configuration tool, went over to Connections, and reassigned
the
TCP-RDP listener to listen for requests on my Internal NIC. I don't
need it
to listen to external requests as I have a Terminal Server paired with
the
SBS Server, so all RDP traffic is routed to my Terminal Server. I
simply
Remote in to the TS server, then Remote in from the TS server when I
want to
talk to the SBS Server...I supposed I could have mapped the SBS Server
to
listen on a different port, but my solution is working just fine for me.
Anyway, try to reassign the TCP-RDP listener to listen for requests on
your
correct network card, and see if that solves the problem.
Good luck!
Anthony
----- Original Message -----
From: "Rob Moore" <RMoore@xxxxxxxx>
Sent: Friday, February 17, 2006 8:30 AM
Subject: Access to remote ISA 2004 server via RDP no longer working
Hello all--
I have a remote ISA 2004 server (on Win2k3 SP1, was ISA SP1, now is ISA
SP2) at a colocation facility. I also have an ISA 2004 server (on Win2k3
SP1, ISA SP1) here in the building. Behind the remote ISA server is a
web server. There is a VPN connection between the two ISA servers.
Up until this week, I have been able to RDP from here to both remote
servers. I could RDP to both servers over the VPN or without it, for
those times when the VPN has broken.
I don't know exactly when I stopped being able to RDP. I first
discovered it this week, right after I applied the latest MS security
patches to my computer. I was then going about applying them to my
servers. I got into and applied them to the remote web server. But I
couldn't get into my remote ISA server. I can still RDP to the remote
web server, both over the VPN and not over the VPN. When I try to RDP to
the ISA server, I get this error at my workstation:
"Remote Desktop Disconnected
The client could not connect to the remote computer.
Remote connections might not be enabled or the computer might be too
busy to accept new connections. Blah blah blah."
So this morning I went over to the colocation facility. I monitored
attempts to get in via RDP. Then I tried applying all the MS updates
(except for ISA SP2) and rebooting. RDP attempts got the same result.
Then I tried applying ISA SP2. RDP attempts yielded the same result.
Examining the logs on the remote ISA server shows me that it is NOT now,
nor was it before, denying the connection. Instead I'm getting the
result code "0x80074e21". When I Google that, I get to a Microsoft web
page with lots of error codes, including that one on ISA, and it says "A
connection was abortively closed after one of the peers sent a RST
segment."
Does that sound familiar to anyone? Any ideas about how to approach this
problem? It's complicated by the fact that, now that RDP to the ISA
server isn't working, I have to take a 30-minute trip to the colocation
facility if I want to get my hands on the server.
One thing I didn't think of trying until I'd left the facility was
RDPing from the web server to the ISA server.
Thanks,
Rob
------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Visit TechGenix.com for more information about our other sites:
http://www.techgenix.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
tshinder@xxxxxxxxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx
Other related posts:
