VPN IP filtering question

[pc]

Archived from groups: microsoft.public.win2000.security (More info?)

Hi,

I have a Windows 2000 VPN server that works fine until I apply IP filtering.
With filtering applied all clients can connect and are authenticated without
any problems.

The ploblem is I can't seem to access any network resources. When I try to
ping any host (either by IP or netbios name) I receive one successful reply
and 3 time outs. This is the same for any host except the VPN server itself.

After this all pings time out unless I don't ping for at least 5 mins then I
will receive one reply again.How or why is this happening

This seems like a RRAS question (which it is I guess) but the problem only
occurs when filtering is applied so I thought maybe somebody here could
help.

Thanks for any advice

...pc

 

[Guest]

Archived from groups: microsoft.public.win2000.security (More info?)

Where exactly are you doing the filtering - tcp/ip filtering, ipsec filtering, Remote
Access Policy filtering, or on the external adapter in Remote Access Management
Console? --- Steve


"PC" <paulm DOT c at iol DOT ie> wrote in message
news:%23C8DNE8nEHA.1712@tk2msftngp13.phx.gbl...
> Hi,
>
> I have a Windows 2000 VPN server that works fine until I apply IP filtering.
> With filtering applied all clients can connect and are authenticated without
> any problems.
>
> The ploblem is I can't seem to access any network resources. When I try to
> ping any host (either by IP or netbios name) I receive one successful reply
> and 3 time outs. This is the same for any host except the VPN server itself.
>
> After this all pings time out unless I don't ping for at least 5 mins then I
> will receive one reply again.How or why is this happening
>
> This seems like a RRAS question (which it is I guess) but the problem only
> occurs when filtering is applied so I thought maybe somebody here could
> help.
>
> Thanks for any advice
>
> ..pc
>
>

 

[pc]

Archived from groups: microsoft.public.win2000.security (More info?)

Hi Steve,

Thanks for your reply.

I'm doing the filtering on the public interface on the VPN server. I have
set Input and output filters in Ip Routing > General > Right click the
interface facing the internet > then properties and Input and Output
filters.

Any ideas

Regards

Paul

"Steven L Umbach" <n9rou@n0-spam-for-me-comcast.net> wrote in message
newseZ3d.86102$D%.32784@attbi_s51...
> Where exactly are you doing the filtering - tcp/ip filtering, ipsec
filtering, Remote
> Access Policy filtering, or on the external adapter in Remote Access
Management
> Console? --- Steve
>
>
> "PC" <paulm DOT c at iol DOT ie> wrote in message
> news:%23C8DNE8nEHA.1712@tk2msftngp13.phx.gbl...
> > Hi,
> >
> > I have a Windows 2000 VPN server that works fine until I apply IP
filtering.
> > With filtering applied all clients can connect and are authenticated
without
> > any problems.
> >
> > The ploblem is I can't seem to access any network resources. When I try
to
> > ping any host (either by IP or netbios name) I receive one successful
reply
> > and 3 time outs. This is the same for any host except the VPN server
itself.
> >
> > After this all pings time out unless I don't ping for at least 5 mins
then I
> > will receive one reply again.How or why is this happening
> >
> > This seems like a RRAS question (which it is I guess) but the problem
only
> > occurs when filtering is applied so I thought maybe somebody here could
> > help.
> >
> > Thanks for any advice
> >
> > ..pc
> >
> >
>
>

 

[Guest]

Archived from groups: microsoft.public.win2000.security (More info?)

Check your filter configurations so that the local subnet is allowed and not just the
IP address of the VPN server. --- Steve


"PC" <paulm DOT c at iol DOT ie> wrote in message
news:%23X3D%23iIoEHA.2140@TK2MSFTNGP11.phx.gbl...
> Hi Steve,
>
> Thanks for your reply.
>
> I'm doing the filtering on the public interface on the VPN server. I have
> set Input and output filters in Ip Routing > General > Right click the
> interface facing the internet > then properties and Input and Output
> filters.
>
> Any ideas
>
> Regards
>
> Paul
>
> "Steven L Umbach" <n9rou@n0-spam-for-me-comcast.net> wrote in message
> newseZ3d.86102$D%.32784@attbi_s51...
>> Where exactly are you doing the filtering - tcp/ip filtering, ipsec
> filtering, Remote
>> Access Policy filtering, or on the external adapter in Remote Access
> Management
>> Console? --- Steve
>>
>>
>> "PC" <paulm DOT c at iol DOT ie> wrote in message
>> news:%23C8DNE8nEHA.1712@tk2msftngp13.phx.gbl...
>> > Hi,
>> >
>> > I have a Windows 2000 VPN server that works fine until I apply IP
> filtering.
>> > With filtering applied all clients can connect and are authenticated
> without
>> > any problems.
>> >
>> > The ploblem is I can't seem to access any network resources. When I try
> to
>> > ping any host (either by IP or netbios name) I receive one successful
> reply
>> > and 3 time outs. This is the same for any host except the VPN server
> itself.
>> >
>> > After this all pings time out unless I don't ping for at least 5 mins
> then I
>> > will receive one reply again.How or why is this happening
>> >
>> > This seems like a RRAS question (which it is I guess) but the problem
> only
>> > occurs when filtering is applied so I thought maybe somebody here could
>> > help.
>> >
>> > Thanks for any advice
>> >
>> > ..pc
>> >
>> >
>>
>>
>
>