question

ElTistou-6106 avatar image
0 Votes"
ElTistou-6106 asked ElTistou-6106 commented

When VPN enabled, lost DNS and DCO / Event ID 8015, 334 ...

Hello all,
On a Windows Server 2019, when I'm connected on the VPN (IKEV), I lost the connection with local DNS (event ID : 8015).
I lost the communication with my DC (event ID : 334, 5719, 1054).
Of course when I try to connect on shared folder : \\nameofcomputer it don't work ... (by IP : yes).
When someone connect on this server it's very long and the VPN disconnect.
NSLookup show that it's the DNS remote who is by default.
So I change the metric, I enter "1" on my network adapter.
NSLookup show :
DNS Request timed out
Default server : Unknow
Address : 192.168.0.1

Thanks in advance for your help.







windows-serverwindows-dhcp-dns
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

DSPatrick avatar image
0 Votes"
DSPatrick answered

Hopefully the VPN role is not installed on domain controller?




5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

ElTistou-6106 avatar image
0 Votes"
ElTistou-6106 answered ElTistou-6106 edited

This server is connected to a VPN server.
It's not the server VPN.
And on the DC there is not a VPN.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

DSPatrick avatar image
0 Votes"
DSPatrick answered

Still not a lot to go on and vague but check that the VPN connection box for use default gateway on remote network is checked or unchecked depending on goals.

--please don't forget to Accept as answer if the reply is helpful--







5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

ElTistou-6106 avatar image
0 Votes"
ElTistou-6106 answered

There is no option "gateway" in the VPN properties.

96875-image.png



image.png (48.7 KiB)
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

DSPatrick avatar image
0 Votes"
DSPatrick answered

96837-image.png


--please don't forget to Accept as answer if the reply is helpful--







image.png (1.8 MiB)
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

DSPatrick avatar image
0 Votes"
DSPatrick answered

Just checking if there's any progress or updates?

--please don't forget to Accept as answer if the reply is helpful--




5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

ElTistou-6106 avatar image
0 Votes"
ElTistou-6106 answered

I have not explained enough.

In fact "use default gateway on remote desktop" don't change the result (check or uncheck).
The ipconfig of VPN is the same :
gateway : 0.0.0.0

And the nslookup give always : "DNS request timed out" (witch change metric).

I said "no option "gateway"" to put a IP address.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

DSPatrick avatar image
0 Votes"
DSPatrick answered

DNS request timed out

I'd check the correct DNS server are being used. Generally a vpn client connection inherits the DNS servers used on the RRAS server.

--please don't forget to Accept as answer if the reply is helpful--







5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

ElTistou-6106 avatar image
0 Votes"
ElTistou-6106 answered

96876-image.png



image.png (71.5 KiB)
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

DSPatrick avatar image
0 Votes"
DSPatrick answered DSPatrick edited

Looks like a firewall is blocking. I'd check the required ports are flowing between networks.
https://docs.microsoft.com/en-us/troubleshoot/windows-server/identity/config-firewall-for-ad-domains-and-trusts
https://www.microsoft.com/en-us/download/details.aspx?id=24009

--please don't forget to Accept as answer if the reply is helpful--










5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.