VPN connections: impossible to ping network's machines

Similar Messages

• Use VPN connection as a listen network interface in Web Application proxy

  I have a test environment: domain in hyper-v with Sharepoint and Office Web Apps servers (all under Windows 2012 - Windows 2012 R2).
  Because my home ISP does not permit some inbound ports (80,443) in a gate machine (under Windows 2012 R2) I create a vpn connection (by "setup a new connection or network") to my outside vpn server. On this vpn server the ports forwarding is configured
  and work fine (f.e. default IIS site is visible).
  I try to public my Sharepoint 2013 Foundation in Internet over this vpn connection and faced with the problem - WAPx (Web application proxy) does not bind to this vpn connection, only to traditional network interfaces.
  The question is how to make listening WAPx the VPN interface?

  Hi,
  Thank you for posting in Windows Server Forum.
  Please check beneath thread and article might helpful in your case.
  Configure a reverse proxy device for SharePoint Server 2013 hybrid
  http://technet.microsoft.com/en-us/library/dn607304(v=office.15).aspx
  Forcing VPN users through a proxy
  http://social.technet.microsoft.com/Forums/en-US/5a6a502d-4583-4c51-8486-3af982ba92da/forcing-vpn-users-through-a-proxy?forum=winserverNIS
  What’s New in 2012 R2: People-centric IT in Action - End-to-end Scenarios Across Products
  http://blogs.technet.com/b/in_the_cloud/archive/2013/07/17/people-centric-it-in-action-end-to-end-scenarios-across-products.aspx
  Hope it helps!
  Thanks,
  Dharmesh

• VPN Connection Seen As Public Network In Windows 8.1 & No Way To Change It?

  Hello,
  I have a perfectly working VPN setup in Windows 7 however since I have got a Windows 8 computer and subsequently upgraded it to 8.1 when I connect to the VPN it assigns the connection as Public and I cannot view any of the network shares.
  As I understand it, in Windows 8 you could go into the network section of Change PC Settings, right click over the VPN and enable sharing which would convert the public network type to private however there is no longer this option to enable sharing in 8.1
  So I'm left with having to disable the public firewall and then connect to the VPN where it works perfectly but is a bit of a pain.
  I'm hoping someone can help me to change the network type of the VPN connection from Public to Private, unfortunately the laptop runs Windows 8.1 Home Premium so I do not have access to gpedit.msc
  Hope someone can help.
  Regards,
  Mike

  Hi Mike,
  Based on my knowledge, we can use the following method to change the network type of connection from Public to Private.
  Set Network to be Private in Windows 8 and 8.1 in Registry
  1.Press Win + R keys to open the Run dialog, type regedit, and press Enter.
  2.In Registry Editor, navigate to the location below:
  HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\NetworkList\Profiles
  3.Expand Profiles, click on each long GUID number subkey, and look at its PofileName string value in the right pane to see if it has the current network name (ex: Network) until found.
  4.When you find the correct PofileName for your network name, double click/tap on the Category DWORD value in the same right pane to modify it.
  5.Type in a new Data value number for the network location you want, and click/tap on OK.
  Network location      Data value
  Public                                0
  Private                             1
  Domain                            2
  6.When finished, please reboot your computer.
  Hope this helps.
  Regards,
  Kelvin hsu
  TechNet Community Support

• VPN connects but No Ping; AFP; or SMB

  Folks;
  All Mac's are fully updated Tiger or Tiger Server {running dual NIC's w/ NAT;DNS;DCHP;VPN;AFP;Firewall;Windows;DNS}
  I can connect using the client's IntenetConnet L2TP mechanism and the clock ticks away...
  But once connected I cannot mount shares or ping.
  I have verfied that these shares can be mounted if connected NOT thru the VPN.
  I have read a long thread here from last year and based on that have implemented firewall rules for allowing all traffic (TCP & UPD) (In or Out) for ppp* to 19.168.2.0/24 and for 192.168.2.0/24 to ppp* {4 rules total}
  I have not made any Network Routing Definitions in the VPN settings
  Help Please!
  How do you debug this? Where is the best documentation to read on this?
  I'm going nuts!
  Steve

  Start by enabling logging of denied packets in the firewall settings.
  Then: what IP are you trying to use to get at the server services (you should use the NATed LAN IP)?
  Also the remote client must not be connecting from a network which are using the same IP range as the server LAN.
  And VPN client IPs must be part of the LAN IP range.

• Setup router to router VPN connecting 2 windows domain networks via 2 RV042 routers

  I am using 2 RV042 routers.  I have created a point to point VPN with Remote Security Group Type= Subnet, using the default IPSec settings. 
  Under advanced settings-  Aggressive Mode, Keep Alive enabled.
  Location A- SBS 2011 standard, Servername=SBSServer, Domainname = Smallbusiness.Local, IP address 10.1.10.50
  DHCP range 10.1.10.100 to 10.1.10.175.  DNS and Print services. No WINS.  
  Location B- Server 2008 R2, Sername=SBSServer, Domain name=Smallbusiness.Local, IP address 192.168.10.50
  DHCP range 192.168.10.100 to 192.168.10.175,  DNS, Print Services and Remote Desktop Services.  No WINS
  I am wondering 2 things.  Can I setup the VPN tunnel to route traffice between the 2 networks without changing the server names.  Leaving the servernames the same.  I have it setup that way but also had netbios broadcast enable.  If I disable netbios broadcast will that be enough for these networks to be independent of each other.  I was hoping not to have to rename the domain and there are advantages to having the same user and domain name when mapping drives between networks.  I have not needed to authenticate those drives or provide credititals for printing either. 
  2) Should I change the domain name so that each network has a unique domain name or, if I change the servername of the 2008 R2 server will that essentially solve my network issues, the primary issue being that location b has clients that occasionally can not find the 2008 R2 domain controller.  After a restart the usually resolve to the correct domain controller.
  Essentially what I am asking is what are the best practices to connect 2 separate Windows domain networks via a VPN and have those networks capable of file sharing to the each others domain server and printing to the network printers at both loations.
  Should I have separate domain names-
  Should I have separate server and computer names-

  "reserved not zero on payload" generally means your pre-shared keys don't match. Try removing the "crypto isakmp key ...." line and retyping it in again on both sides. In particular DON'T cut/paste it from one router config into another, this quite often puts a space character onto the end of the key, which the router interprets as part of the key and they therefore don't match.

• Is there a limit to the number of concurrent L2TP/IPSec VPN connections in Snow Leopard

  Hi,
  I'm currently running an L2TP/IPSec service from a Snow Leopard server VM running on the latest version of Lion Server ( Had loads of issues with Lion VPN connectivity from outside our network when I first upgraded the physical server to Lion. quickest way to get the service back was to run an S/L VM. I know that there have been some changes to Lion in the VPN area, but this works... sort of;;;)
  I've got an IP address pool of 20 addresses confgured as this is only for ICT staff members. Each user has a local userid/password on the S/L server. For me, things just work.
  iPhone, iPad, OS X lion client they all work and I've had about 3 simultaneous connections up and running.However, the majority of staff users use Windows 7 client machines and they're been reporting sporadic connection failures where one moment they can get connected and the next they can't.  I'm currently wondring if there is some concurrent limit setting they are hitting and are getting slung off because I've got other users using the service.  It would be a bit strange if S/L can only support 2 or 3 connections out of the box.
  Then again it might be VMWare Fusion (Vsn 4.1.1) thats the problem.
  Any help apppreciated
  Rgds
  Alex

  You have to count to have about 30GB at least free on the startup disk, after you have the library loaded.
  On the external you have space enough.
  As far as I know there is no limit for iPhoto, but I suggest to not let it grow too much, because everything will become sluggish, also making backups. It should be possible to split up in more libraries, one that is really actual and one that is the past. Physical splitting up I mean, not smart collections. You can switch libraries by holding the Alt(option) at startup of iPhoto.

• SMB and VPN connected to Windows Server 2003

  I have search the web for an answer on this problem, I've only found peoble with same problem, but still no solution :o/
  I wan't to connect to my office (windows2003) from my OSX 10.4.2 at home. I've set up an VPN connection and can PING the server (and others) on the network. Works fine.
  When I connect to the server via SMB://server/ I get a list with all different folders (or servers) I can connect to but I get rejected with the answer Bad name or password. Now to the funny part; I can connect in the Terminal using smbclient with the same user and pwd just rejected in Finder!!!
  I've read about this problem on http://www.macwindows.com/tiger.html#052305a but I can't find a solution. Someone mentioned a bug with apple number #4108992 - Can anyone tell me where I can read about that? Or better - Where I can find a solution. (I've tried to erase keychain)
  Rgds
  /Johan

  My school sets up our network disk space with access via FTP. I don't know if that is an option through your company. While I have to download files to work with them and then upload them again to the network space to access them at work, it does allow me to look at the directory structure. I use an FTP client (not the one built into OS X). This might be an option for you to check on with your IT department. (This also eliminates my need to use VPN.)
  Hope this helps.
  PB G4 15"   Mac OS X (10.4.3)  

• Dual Remote VPN Connection

  Hello Guys
  i created three different Remote VPN connections with three different networks . i can make them one but for some reasons i don't mix all.
  and iam using  Cisco asa 5505 with Shrew Soft VPN software , so my problem is
  - i connected Shrew soft remote vpn , if i try to connected another remote vpn connection this will not accept the second connection , so please can any one give me  a remote vpn connection software that accepts more than one connection

  Hi,
  Since you mention the ASA and the VPN I presume you are trying to connect by VPN Client to the same ASA?
  Why would you want to have several VPN client connections at the same time? (Though I think that isnt even possible)
  What are you trying to accomplish by these 3 different VPN Client configurations configured on the same ASA?
  Isnt it just possible to configure one VPN Client connection to the ASA that would handle all the traffic of these 3 VPN Client connections?
  - Jouni

• Why is my Mac initiating hidden VPN connections?

  In looking through my system.log, I've discovered that my Mac is initiating VPN connections in the background but I don't know why, nor do I know what it's connecting to. It's apparently been going on for at least several weeks, if not longer. Here's some relevant entires from the log:
  Sep  3 14:45:30 BruceMacBookPro.local racoon[153]: Connecting.
  Sep  3 14:45:30 BruceMacBookPro.local racoon[153]: IPSec Phase1 started (Initiated by me).
  Sep  3 14:45:30 BruceMacBookPro.local racoon[153]: IKE Packet: transmit success. (Initiator, Aggressive-Mode message 1).
  Sep  3 14:45:30 BruceMacBookPro.local racoon[153]: Connecting.
  Sep  3 14:45:30 BruceMacBookPro.local racoon[153]: IPSec Phase1 started (Initiated by me).
  Sep  3 14:45:30 BruceMacBookPro.local racoon[153]: IKE Packet: transmit success. (Initiator, Aggressive-Mode message 1).
  Sep  3 14:45:32 BruceMacBookPro.local racoon[153]: IKEv1 Phase1 AUTH: success. (Initiator, Aggressive-Mode Message 2).
  Sep  3 14:45:32 BruceMacBookPro.local racoon[153]: IKE Packet: receive success. (Initiator, Aggressive-Mode message 2).
  Sep  3 14:45:32 BruceMacBookPro.local racoon[153]: IKEv1 Phase1 Initiator: success. (Initiator, Aggressive-Mode).
  Sep  3 14:45:32 BruceMacBookPro.local racoon[153]: IKE Packet: transmit success. (Initiator, Aggressive-Mode message 3).
  Sep  3 14:45:32 BruceMacBookPro.local racoon[153]: IKE Packet: transmit success. (Information message).
  Sep  3 14:45:32 BruceMacBookPro.local racoon[153]: IKEv1 Information-Notice: transmit success. (ISAKMP-SA).
  Sep  3 14:45:32 BruceMacBookPro.local racoon[153]: IPSec Phase1 established (Initiated by me).
  Sep  3 14:45:32 BruceMacBookPro.local racoon[153]: IKE Packet: receive success. (Information message).
  Sep  3 14:45:33 BruceMacBookPro.local racoon[153]: IKE Packet: transmit success. (Phase1 Retransmit).
  Sep  3 14:45:33 BruceMacBookPro.local racoon[153]: IPSec Phase2 started (Initiated by me).
  Sep  3 14:45:33 BruceMacBookPro.local racoon[153]: IKE Packet: transmit success. (Initiator, Quick-Mode message 1).
  Sep  3 14:45:33 BruceMacBookPro.local racoon[153]: IPSec Phase2 started (Initiated by peer).
  Sep  3 14:45:33 BruceMacBookPro.local racoon[153]: IKE Packet: receive success. (Responder, Quick-Mode message 1).
  Sep  3 14:45:33 BruceMacBookPro.local racoon[153]: IKE Packet: transmit success. (Responder, Quick-Mode message 2).
  Sep  3 14:45:34 BruceMacBookPro.local racoon[153]: IKE Packet: receive success. (Initiator, Quick-Mode message 2).
  Sep  3 14:45:34 BruceMacBookPro.local racoon[153]: IKE Packet: transmit success. (Initiator, Quick-Mode message 3).
  Sep  3 14:45:34 BruceMacBookPro.local racoon[153]: IKEv1 Phase2 Initiator: success. (Initiator, Quick-Mode).
  Sep  3 14:45:34 BruceMacBookPro.local racoon[153]: IPSec Phase2 established (Initiated by me).
  Sep  3 14:45:34 BruceMacBookPro.local racoon[153]: IKE Packet: receive success. (Responder, Quick-Mode message 3).
  There's lots more, but it all looks pretty much like the above. Would the OS, or some standard system service or application, be doing this? During the time period covered by the above log entries, as far as I can remember, the only apps I was running were Mail, Safari, and 1Password. I do have some VPN connections defined in the Network panel of System Preferences, but I was NOT using them at the time. Is this normal, or do I have a problem?
  -- Bruce

  I found this today also.  I'm going to turn off Back to my Mac, DropBox and Splashtop Remote and see if that stops it.  Do you run any of these? And tried turning any OFF.

• JMS doesn't work with VPN connection on weblogic8.1

            Hi:
            We have used JMS topic on weblogic 7.x and we use both LAN and VPN connection.
            However, when we switch to weblogic 8.1, although it works fine when using
            LAN connection,
            it does not work when using VPN connection. We tried three different machines,
            got the same
            error.
            The error is:
            weblogic.jms.common.JMSException: Error creating connection on the server
            at weblogic.jms.client.JMSConnectionFactory.createConnectionInternal(JMS
            ConnectionFactory.java:160)
            at weblogic.jms.client.JMSConnectionFactory.createTopicConnection(JMSCon
            nectionFactory.java:95)
            at com.dynamex.decs.common.jms.DecsSubscriber.initialize(DecsSubscriber.
            java:59)
            at com.dynamex.decs.client.orderentry.swing.OrderEntry.initRMI(OrderEntr
            y.java:1714)
            at com.dynamex.decs.client.orderentry.swing.OrderEntry.<init>(OrderEntry
            .java:124)
            at com.dynamex.decs.client.orderentry.swing.OrderEntry.main(OrderEntry.j
            ava:3180)
            Caused by: java.rmi.MarshalException: CORBA COMM_FAILURE 1398079697 No; nested
            e
            xception is:
            org.omg.CORBA.COMM_FAILURE: vmcid: SUN minor code: 209 completed:
            No
            at com.sun.corba.se.internal.iiop.ShutdownUtilDelegate.mapSystemExceptio
            n(Unknown Source)
            at javax.rmi.CORBA.Util.mapSystemException(Unknown Source)
            at weblogic.jms.frontend._FEConnectionFactoryRemote_Stub.connectionCreat
            eRequest(_FEConnectionFactoryRemote_Stub.java:106)
            at weblogic.jms.client.JMSConnectionFactory.createConnectionInternal(JMS
            ConnectionFactory.java:139)
            ... 5 more
            Caused by: org.omg.CORBA.COMM_FAILURE: vmcid: SUN minor code: 209 completed:
            No
            at com.sun.corba.se.internal.iiop.IIOPConnection.purge_calls(Unknown Sou
            rce)
            at com.sun.corba.se.internal.iiop.MessageMediator.handleInput(Unknown
            So
            urce)
            at com.sun.corba.se.internal.iiop.messages.MessageBase.callback(Unknown
            Source)
            at com.sun.corba.se.internal.iiop.MessageMediator.processRequest(Unknown
            Source)
            at com.sun.corba.se.internal.iiop.IIOPConnection.processInput(Unknown
            So
            urce)
            at com.sun.corba.se.internal.iiop.ReaderThread.run(Unknown Source)
            Does anybody have the experience? Can anybody give a hint?
            Thanks,
            Tony
            

  Hi Tony,
            Given that the thick jar works, I would classify the problem
            as a bug - not a missing feature. The thin jar is contracted
            to be just as capable as the thick jar. My guess is that
            the bug is likely in IIOP but perhaps could be in JMS.
            Contact customer support (this forum is not maintained by
            customer support). Meanwhile, you can post your info
            to the IIOP newsgroup to see if they can help.
            You asked how long it would take to fix? That depends
            on bug priority (set by the customer) and bug complexity,
            but its usually measured in days or weeks (not months).
            You can speed up the process by giving support your
            logs and stack traces, as well as a simple reproducer,
            and telling them you are willing to try out a prototype
            patch. But before going through extra trouble, just give
            them the logs/stack traces, in case it is a known issue
            for which there is already a fix or there is a fix in progress.
            Tom
            tony yang wrote:
            > Tom:
            >
            > Thanks,
            > We actually use t3. However, in terms of weblogic 8.1 doc, t3 transparently
            > uses iopp. So t3 or iopp both fails over VPN connection.
            >
            > After replacing with full weblogic jar as you suggested, it works.
            >
            > However, we really want the thin client because we have huge amount of client
            > deployments.
            >
            > The other developers here also noticed other problems beside JMS problem
            > when using VPN connection and thin client jars.
            >
            > We guess full weblogic.jar uses real t3 instead of iiop.
            >
            > Seems that iiop does not work well over VPN connection.
            >
            > Could you give some estimate of when we can have the new thin client jars
            > to support VPN connection (even not official release)?
            >
            > Tony
            >
            > Tom Barnes <[email protected]> wrote:
            >
            >>Hi Tony,
            >>
            >>At first glance I don't know what is going on, and can only
            >>make some random suggestions. Perhaps try
            >>the t3 protocol (rather than iiop protocol) if you are using iiop
            >>URLs to connect to JMS. If you are using the new 8.1 thin
            >>client jars, try switching back and using full jar instead.
            >>Perhaps try posting to the IIOP newsgroup.
            >>
            >>Tom, BEA
            >>
            >>tony yang wrote:
            >>
            >>
            >>>I also have the log from weblogic server:
            >>>
            >>>weblogic.jms.dispatcher.DispatcherException: Could not register a HeartbeatMoni
            >>>orListener for [weblogic.iiop.IIOPRemoteRef@745152c4] for weblogic.jms.C:dal603
            >>>t05:rcy:-l91
            >>> at weblogic.jms.dispatcher.DispatcherWrapperState.addPeerGoneListener(D
            >>>spatcherWrapperState.java:563)
            >>> at weblogic.jms.dispatcher.DispatcherManager.dispatcherAdd(DispatcherMa
            >>>ager.java:106)
            >>> at weblogic.jms.dispatcher.DispatcherManager.addDispatcherReference(Dis
            >>>atcherManager.java:196)
            >>> at weblogic.jms.frontend.FEConnectionFactory.connectionCreateInternal(F
            >>>ConnectionFactory.java:413)
            >>> at weblogic.jms.frontend.FEConnectionFactory.connectionCreateRequest(FE
            >>>onnectionFactory.java:385)
            >>> at weblogic.jms.frontend.FEConnectionFactory_WLSkel.invoke(Unknown
            >>
            >>Sour
            >>
            >>>e)
            >>> at weblogic.rmi.internal.BasicServerRef.invoke(BasicServerRef.java:466)
            >>> at weblogic.rmi.cluster.ReplicaAwareServerRef.invoke(ReplicaAwareServer
            >>>ef.java:108)
            >>> at weblogic.rmi.internal.BasicServerRef$1.run(BasicServerRef.java:409)
            >>> at weblogic.security.acl.internal.AuthenticatedSubject.doAs(Authenticat
            >>>dSubject.java:353)
            >>> at weblogic.security.service.SecurityManager.runAs(SecurityManager.java
            >>>144)
            >>>@
            >>>
            >>>
            >>>"tony yang" <[email protected]> wrote:
            >>>
            >>>
            >>>>Hi:
            >>>>
            >>>> We have used JMS topic on weblogic 7.x and we use both LAN and
            >>>>VPN connection.
            >>>> However, when we switch to weblogic 8.1, although it works fine
            >>>>when using
            >>>>LAN connection,
            >>>>it does not work when using VPN connection. We tried three different
            >>>>machines,
            >>>>got the same
            >>>>error.
            >>>> The error is:
            >>>>
            >>>>weblogic.jms.common.JMSException: Error creating connection on the
            >>
            >>server
            >>
            >>>> at weblogic.jms.client.JMSConnectionFactory.createConnectionInternal(JMS
            >>>>ConnectionFactory.java:160)
            >>>> at weblogic.jms.client.JMSConnectionFactory.createTopicConnection(JMSCon
            >>>>nectionFactory.java:95)
            >>>> at com.dynamex.decs.common.jms.DecsSubscriber.initialize(DecsSubscriber.
            >>>>java:59)
            >>>> at com.dynamex.decs.client.orderentry.swing.OrderEntry.initRMI(OrderEntr
            >>>>y.java:1714)
            >>>> at com.dynamex.decs.client.orderentry.swing.OrderEntry.<init>(OrderEntry
            >>>>.java:124)
            >>>> at com.dynamex.decs.client.orderentry.swing.OrderEntry.main(OrderEntry.j
            >>>>ava:3180)
            >>>>Caused by: java.rmi.MarshalException: CORBA COMM_FAILURE 1398079697
            >>
            >>No;
            >>
            >>>>nested
            >>>>e
            >>>>xception is:
            >>>> org.omg.CORBA.COMM_FAILURE: vmcid: SUN minor code: 209 completed:
            >>>>No
            >>>>
            >>>> at com.sun.corba.se.internal.iiop.ShutdownUtilDelegate.mapSystemExceptio
            >>>>n(Unknown Source)
            >>>> at javax.rmi.CORBA.Util.mapSystemException(Unknown Source)
            >>>> at weblogic.jms.frontend._FEConnectionFactoryRemote_Stub.connectionCreat
            >>>>eRequest(_FEConnectionFactoryRemote_Stub.java:106)
            >>>> at weblogic.jms.client.JMSConnectionFactory.createConnectionInternal(JMS
            >>>>ConnectionFactory.java:139)
            >>>> ... 5 more
            >>>>Caused by: org.omg.CORBA.COMM_FAILURE: vmcid: SUN minor code: 209
            >>>>completed:
            >>>>No
            >>>> at com.sun.corba.se.internal.iiop.IIOPConnection.purge_calls(Unknown
            >>>>Sou
            >>>>rce)
            >>>> at com.sun.corba.se.internal.iiop.MessageMediator.handleInput(Unknown
            >>>>So
            >>>>urce)
            >>>> at com.sun.corba.se.internal.iiop.messages.MessageBase.callback(Unknown
            >>>>Source)
            >>>> at com.sun.corba.se.internal.iiop.MessageMediator.processRequest(Unknown
            >>>>Source)
            >>>> at com.sun.corba.se.internal.iiop.IIOPConnection.processInput(Unknown
            >>>>So
            >>>>urce)
            >>>> at com.sun.corba.se.internal.iiop.ReaderThread.run(Unknown Source)
            >>>>
            >>>>
            >>>> Does anybody have the experience? Can anybody give a hint?
            >>>>
            >>>> Thanks,
            >>>>
            >>>>Tony
            >>>
            >>>
            >
            

• Window 8.1 system unable to access network shares via VPN connection

  Is there something inherent to Windows 8.1 that prevents it from accessing shares on a domain?
  I know that it cannot join a domain, but does that also mean that it cannot access shares which are on a domain?
  My problem is that I have several user that are running windows 8.1 that are connecting to our network via a VPN.
  The users have domain accounts but their computers as windows 8.1 cannot joined to the domain.
  So to access network shares they have to use their domain credentials to create a VPN connection.
  Once connected the user can RDP to systems on the domain using their domain accounts, so I know that their user names/passwords and permissions are correct. They can access these systems using the computer name, so I don't feel that I have a DNS issue.
  They can see the shares on our file server, but when they try to access their departments shared file, they receive an access denied message. There are a few shares that are completely wide open, shared to all users and all departments but they cannot access
  those shares either.
  You can ping the file server, from the the client when they are connected to the VPN but you just cannot access any of the shares.
  So...
  I am thinking that it has something to do with windows 8.1 and not being able to join a domain, but I cannot find anything to explicitly support this thought.
  Other users running a variety different OS (windows 7, OSX, Linux) can all access the shares without any problems via the VPN, so I am a little stumped.

  I have done some more testing and oddly enough I can map a drive if I use the IPaddress, but not the computer name, when checking the check box "connect using different credentials"and providing they users domain credentials.
  This seems to point to a DNS issue, one would think, but I can hit the file share server by name \\fileserver.dev.lan
  I can see all the shares, so dns seems to be fine right?
  So I don't understand why I can map a drive using do the IPaddress and not the machine name, but yet I can see and ping the server by name?
  When I try to create a mapped drive by machine name I receive the following message:
  Windows cannot access \\fileserver.dev.lan\all
  You do not have permissions to access \\fileserver.dev.lan. contact your network administrator  to request access.
  But if I use the \\x.x.x.x\all using the very same user and password I get connected with no problem.
  This only seems to happen on windows 8.1, which leads me to think that has something to do with OS. 
  I am thinking about upgrading to windows 8.1 pro, but I don't want to go though the hassle and expanse is the OS is not the problem.

• Using the personal hotspot feature on the iPhone 5, I am able to connect to the internet.  We also use Juniper NCP client to access our system remote.  A VPN connection is created, but I am unable to access servers on our network.  This works on iPhone 4.

  Using the personal hotspot feature on the iPhone 5, I am able to connect to the internet.  We also use Juniper NCP client to access our local system from a remote location.  A VPN connection is created, but I am unable to access servers in our network.  This same functionality works using my colleagues iPhone 4.
  Both phones are running iOS 6.1.3.  I tried to reset network settings, but still unable to ping servers in our network.  This is a feature that our sales team relies heavily on when out of the office.  Hoping someone has some suggestions on what is different between the 2 phones.

  Hi,
  Generally, this issue should be related with something called split tunneling, since you’re using a F5 vpn client, you need to look for something related to split tunneling in the F5 VPN client's documentations.
  Here is an example, share it with you as a reference.
  http://support.f5.com/kb/en-us/products/big-ip_apm/manuals/product/apm_config_10_2_0/apm_config_networkaccess.html
  In addition, you can refer to the link below for more solution about this problem.
  You Cannot Connect to the Internet After You Connect to a VPN Server
  http://support.microsoft.com/kb/317025
  NOTE
  This
  response contains a reference to a third party World Wide Web site. Microsoft is providing this information as a convenience to you.
  Microsoft
  does not control these sites and has not tested any software or information found on these sites.
  Yolanda Zhu
  TechNet Community Support

• Unable to access local machine after a VPN connection

  I have been previously able to control other machine are our network after making a successful VPN connection, until we have to rebuild the server. I have configure everything as before (as I believe), but I am still unable to connect to other local machines. I am able to connect to our xserve and shared drives (via AFP). ARD ports are open as neccessary. thank you

  Hi n.dave, and a warm welcome to the forums!
  So, I take it all the numbers are faked?
  Is the 5th number on the failed on in your Network?

• Can I enable "Use default gateway on remote network" on VPN connection using Group Policy?

  Hi,
  First timer here so please bear with me!
  Environment: Domain Windows 2003, Clients: Windows 7 and Windows XP (with Client Side Extensions pushed out)
  When creating a VPN connection on a client machine manually with default settings the "Use default gateway on remote network" found in [Connection Properties - Networking - IPv4 - Advanced] is enabled, which is good as we don't allow split-tunneling.
  I have a test GPO that creates a new VPN Connection [Computer Config - Preferences - Control Panel - Network Options], but the above setting is unticked.
  Am I missing something on the options for the GP preference to set this automtically?
  I can write a script to directly change the C:\Users\All Users\Microsoft\Network\Connections\Pbk\rasphone.pbk file but would prefer if I could sort it all out using Group Policy.
  Any help would be greatly appreciated!
  Thanks a lot!
  David

  Shane,
  There is actually a way to set the "Use default gateway on remote network" through Group Policy Preferences. And this may even be a better way to do it, because you may change this flag without touching any other settings, or other VPN connections.
  (All VPN connections are stored in the same .pbk file.)
  Here's the trick: Opening the .pbk file in notepad, I realized that this is actually an oldstyle ini-structured file. And Group Policy Preferences can update ini files! In the .pbk file the section names are the VPN connections names, like [My VPN],
  and the property IpPrioritizeRemote is the flag "Use default gateway on remote network".
  So, in Group Policy Management Editor, go to Preferences / Windows Settings / Ini Files.
  Create a new object with Action = Update, and File Path =
  C:\ProgramData\Microsoft\Network\Connections\pbk\rasphone.pbk
  (If this is where your file is located, I guess it is in c:\users if the VPN connection is made for a single user.)
  Section Name should be the display name of your VPN connection, without the brackets.
  Property Name = IpPrioritizeRemote
  Property Value = 1
  Peter, www.skov.com, Denmark
  Peter :-)
  This is great, but just one question. I also want to append a list of DNS Sufixes in order (when viewing a VPN properties, this is buried in
  "Networking --> IPv4/6 --> Advanced --> DNS --> Append these DNS Suffixes (in order)". However, for the VPNs I have manually created with this list populated, I can't see any entries in the rasphone.pbk. Does anyone know
  where these are stored?
  Cheers.

• Cannot connect to VPN after sleep - still works on Windows machine

  Hi Guys,
  I'm very new to using VPN which I now need for work. I recently set up a new connection and it was working fine for a few hours until I closed my MBP lid and sent the machine to sleep. Upon waking the Mac up again the VPN connection appeared to be lost. Trying to reconnect gives me the following error:
  The L2TP-VPN server did not respond. Try reconnecting. If the problem continues, verify your settings and contact your Administrator.
  I've spoken to the sys admin at work and he can't find any problems on his side and the same VPN details appear to work fine on multiple Windows machines. I've tried creating a new connection with the same details and deleting the old one with no success. Tried restarting the machine as well. What other things can I try to potentially get this issue solved?

  I tried BDAqua's suggestion. It did not work.
  System Preferences/Network will not allow a MTU smaller than 72, so I was unable to try a MTU of 53. Maybe there is a configuration file that can be edited manually, bypassing the GUI tool? I tried several other MTU sizes, including 72, no joy. I reset the MTU back to 1492 (to match the router setting) and eventually was able to connect. Running ifconfig in Terminal shows that en0, after connection, still has a MTU of 1492.
  I'm not sure that Mac OS X's dislike of PPPoA has anything to do with it, as this machine never sees PPPoA, it only sees standard TCP/IP - Ethernet. PPPoA is only, best I know, used between the router and the ISP, and no computer on the network cares or is even aware that something such as PPPoA exists. During the time I am unable to connect to the outside with this machine, I am also unable to connect on the inside, despite DHCP on the router having assigned an IP address to the en0 interface.