RE: RES: RE: RES: RE: Filtering on VPN tunnels?
- From: "Thomas W Shinder" <tshinder@xxxxxxxxxxxxxxxxxx>
- To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
- Date: Wed, 23 Apr 2003 16:52:20 -0500
Hi Tiago,
My setup:
Win2003/ISA Server VPN Gateway on each side of the link
T1 on each side with wide open Netopia T1 Router in front of each side
ISA Server with default settings you get after installing SP1 and FP1
VPN Gateways created with local and remote VPN Wizards; VPN
configuration "tweaked" based on stuff I've published over at
www.isaserver.org in my VPN gateway articles.
Share access, Terminal Services, and everything else works great.
HTH,
Tom
Thomas W Shinder
www.isaserver.org/shinder <http://www.isaserver.org/shinder>
ISA Server and Beyond: http://tinyurl.com/1jq1
Configuring ISA Server: http://tinyurl.com/1llp
<http://tinyurl.com/1llp>
-----Original Message-----
From: Tiago de Aviz [mailto:Tiago@xxxxxxxxxxxxxxx]
Sent: Wednesday, April 23, 2003 6:10 AM
To: [ISAserver.org Discussion List]
Subject: RES: [isalist] RE: RES: RE: RES: RE: Filtering on VPN
tunnels?
It wasn't. I implemented Windows 2003 Server here in the HQ,
where we don't have PPPoE.
Tiago de Aviz
IT Consultant
MCP-CNA-AIX-CCNA-CCDA
--------------------------------
www.softsell.com.br
tiago@xxxxxxxxxxxxxxx
--------------------------------
-----Mensagem original-----
De: Thomas W Shinder [mailto:tshinder@xxxxxxxxxxxxxxxxxx]
Enviada: ter 4/22/2003 19:33
Para: [ISAserver.org Discussion List]
Cc:
Assunto: [isalist] RE: RES: RE: RES: RE: Filtering on VPN
tunnels?
http://www.ISAserver.org
Hi Tiago,
I'll bet its the dreaded PPPoE. See if changing the MTU
fixes the problem.
HTH,
Tom
Thomas W Shinder
www.isaserver.org/shinder
<http://www.isaserver.org/shinder>
ISA Server and Beyond: http://tinyurl.com/1jq1
Configuring ISA Server: http://tinyurl.com/1llp
<http://tinyurl.com/1llp>
-----Original Message-----
From: Tiago de Aviz
[mailto:Tiago@xxxxxxxxxxxxxxx]
Sent: Tuesday, April 22, 2003 5:03 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] RES: RE: RES: RE: Filtering
on VPN tunnels?
http://www.ISAserver.org
Thomas,
I found the problem. In the IP Packet filter
logs, ISA server was classifying all packets that went from my terminal
server to my ISA server (which would be retransmitted to the branch
office's workstation) as malformed. I fought, fought and fought with
this problem, but I couldn't find the cause. I downgraded my ISA server
to Windows 2000 and it's all working OK.
Tiago de Aviz
IT Consultant
MCP-CNA-AIX-CCNA-CCDA
--------------------------------
www.softsell.com.br
tiago@xxxxxxxxxxxxxxx
--------------------------------
-----Mensagem original-----
De: Thomas W Shinder
[mailto:tshinder@xxxxxxxxxxxxxxxxxx]
Enviada em: sexta-feira, 18 de abril de 2003
16:41
Para: [ISAserver.org Discussion List]
Assunto: [isalist] RE: RES: RE: Filtering on VPN
tunnels?
http://www.ISAserver.org
Hi Tiago,
All I can tell you its that is definitley NOT
ISA Server getting in the way. I've created many gateway to gateway VPN
links in the last few weeks, and I've not had any problems with
NetBIOS/SMB shares or TCP 3389 through the link.
I'll blame it on the dreaded DSL/PPPoE link
until proven otherwise :-)
HTH,
Tom
Thomas W Shinder
www.isaserver.org/shinder
<http://www.isaserver.org/shinder>
ISA Server and Beyond: http://tinyurl.com/1jq1
Configuring ISA Server: http://tinyurl.com/1llp
<http://tinyurl.com/1llp>
Other related posts:
