question

JohnLenz-5880 avatar image
0 Votes"
JohnLenz-5880 asked JohnLenz-5880 commented

External VPN access only works on one windows10 pro system

OK,
Here is the background...

Server2102R2 Datacenter as host
Server2012R2 standard as Hyper-V VPN server
WIndows10Pro build 2004
Comcast business as Primary ISP
HughesNet as secondary ISP

Current Comcast ISP modem is theirs

I had this working for several years until I upgraded Comcast business to their modem from an Arris (easier for them to fault isolate)

I have several laptops and MS Surface WIndow10 Pro systems. Before the Modem swap out, all connected remotely.

Now only one Laptop (ThinkPad W510) will connect through to VPN server.
VPN server configuration is all green

My test is to WiFi the laptop to the HughesNet ISP that is not part of the LAN. That is how the ThinkPad W510 connects as part of this test and is shown on the VPN connected clients status page.

When I try a laptop or surface pro, I get the following through HugheNet ISP...

The network connection between your computer and the VPN server could not be established because the remote server is not responding.

VPN protocol...

L2TP with pre-share key
Key is correct
Address is remote.mydomain.com

VPN adapters are configured the very same way as the ThinkPad W510 which works ( and they did in the past).

To test, I changed the VPN server name to 192.168.x.x which is the LAN IP address of the VPN server. Both laptop and surface pro connect through the router to the VPN and all 3 systems appear in the VPN client connection page.

The router ports are correctly forwarded to VPN server both LAN and WAN (through the comcast modem)

So my question is why only the ThinkPad W510 connecting through the Comcast Modem when all did through the Arris with the same router and VPN server configuration?

windows-server
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

CandyLuo-MSFT avatar image
0 Votes"
CandyLuo-MSFT answered JohnLenz-5880 commented

Hi ,

I had this working for several years until I upgraded Comcast business to their modem from an Arris (easier for them to fault isolate)

Based on my understanding, the issue occurred after upgrading the modem. Is that right? Please feel free to let me know if I have any misunderstanding. Please understand, we are not familiar with third-party device and we have no such device to test in our lab. So we can only provide some general suggestions here.

1.Please check the event log on both VPN clients and VPN servers to see if there are something related for us to troubleshooting.

2.Change VPN type to PPTP or automatic to to see if they can connect fine.

3.Did you configure NAT-T device in your environment? If yes, please refer to the following link:

Configure a L2TP/IPsec server behind a NAT-T device

Best Regards,
Candy


· 3
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

The regedit key was the culprit. now works

0 Votes 0 ·

But how is that

0 Votes 0 ·

I have been finding several twerks in build 2004 that constrains security access. This could have been one of them.

0 Votes 0 ·