1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Problem PPTP VPN Issue

Discussion in 'Networks' started by craigie, Mar 12, 2010.

  1. craigie

    craigie Terabyte Poster

    3,020
    173
    155
    I have an issue with one user who VPN's in from home.

    He creates a PPTP VPN Connection, without any issues, but it does not pass any traffic.

    If we use another laptop in his house it works fine, so we know the issue is localised to his laptop.

    I have performed the following which has not resolved:

    - Disabled Windows Firewall
    - Disabled Home Router Firewall (rebooted this and office Firewall)
    - Reapplied all NAT and Firewall Policies both end including GRE.
    - Netsh winsock reset
    - Netsh int ip reset

    Any ideas
     
    Certifications: CCA | CCENT | CCNA | CCNA:S | HP APC | HP ASE | ITILv3 | MCP | MCDST | MCITP: EA | MCTS:Vista | MCTS:Exch '07 | MCSA 2003 | MCSA:M 2003 | MCSA 2008 | MCSE | VCP5-DT | VCP4-DCV | VCP5-DCV | VCAP5-DCA | VCAP5-DCD | VMTSP | VTSP 4 | VTSP 5
  2. Notes_Bloke

    Notes_Bloke Terabyte Poster

    3,230
    54
    146
    Was the other laptop that you tried confirgured with the users account or another user account?

    NB
     
    Certifications: 70-210, 70-215, A+,N+, Security+
    WIP: MCSA
  3. jk2447

    jk2447 Petabyte Poster Moderator

    5,482
    353
    249
    Check TCP port 1723 is open
     
    Certifications: BSc (Hons), HND IT, HND Computing, ITIL-F, MBCS CITP, MCP (270,290,291,293,294,298,299,410,411,412) MCTS (401,620,624,652) MCSA:Security, MCSE: Security, Security+, CPTS, VCP4, CCA (XenApp6.5), MCSA 2012, VCP5, VCP6-NV
  4. craigie

    craigie Terabyte Poster

    3,020
    173
    155
    Same credentials, can dial in from another laptop.
     
    Certifications: CCA | CCENT | CCNA | CCNA:S | HP APC | HP ASE | ITILv3 | MCP | MCDST | MCITP: EA | MCTS:Vista | MCTS:Exch '07 | MCSA 2003 | MCSA:M 2003 | MCSA 2008 | MCSE | VCP5-DT | VCP4-DCV | VCP5-DCV | VCAP5-DCA | VCAP5-DCD | VMTSP | VTSP 4 | VTSP 5
  5. craigie

    craigie Terabyte Poster

    3,020
    173
    155
    Already done my friend, all ports reapplied 1723 and 47 for GRE both ends.

    On both Firewalls and also Windows Firewall as well.
     
    Certifications: CCA | CCENT | CCNA | CCNA:S | HP APC | HP ASE | ITILv3 | MCP | MCDST | MCITP: EA | MCTS:Vista | MCTS:Exch '07 | MCSA 2003 | MCSA:M 2003 | MCSA 2008 | MCSE | VCP5-DT | VCP4-DCV | VCP5-DCV | VCAP5-DCA | VCAP5-DCD | VMTSP | VTSP 4 | VTSP 5
  6. jk2447

    jk2447 Petabyte Poster Moderator

    5,482
    353
    249
    I don't suppose his laptop is XP SP2?

    Could also be his private addressing scheme conflicting with your companies i.e. both 10.0.0.0/24

    Just thinking out aloud mate, I've not had this problem TBH
     
    Last edited: Mar 12, 2010
    Certifications: BSc (Hons), HND IT, HND Computing, ITIL-F, MBCS CITP, MCP (270,290,291,293,294,298,299,410,411,412) MCTS (401,620,624,652) MCSA:Security, MCSE: Security, Security+, CPTS, VCP4, CCA (XenApp6.5), MCSA 2012, VCP5, VCP6-NV
  7. craigie

    craigie Terabyte Poster

    3,020
    173
    155
    Oops forgot to say mate, that was one of the things I had changed.
     
    Certifications: CCA | CCENT | CCNA | CCNA:S | HP APC | HP ASE | ITILv3 | MCP | MCDST | MCITP: EA | MCTS:Vista | MCTS:Exch '07 | MCSA 2003 | MCSA:M 2003 | MCSA 2008 | MCSE | VCP5-DT | VCP4-DCV | VCP5-DCV | VCAP5-DCA | VCAP5-DCD | VMTSP | VTSP 4 | VTSP 5
  8. jk2447

    jk2447 Petabyte Poster Moderator

    5,482
    353
    249
    Ah thats a mad one isn't it. If one laptop works and the other won't when he's at home, and I'd tried all the usual suspects, I suppose what I'd do is get both in front of me and play spot the difference going through the settings. Not ideal but sounds like this one is going to be something daft. If you are using PPTP check RRAS too mate.

    Its more messing but I'd want them to be using L2TP/IPSec myself
     
    Certifications: BSc (Hons), HND IT, HND Computing, ITIL-F, MBCS CITP, MCP (270,290,291,293,294,298,299,410,411,412) MCTS (401,620,624,652) MCSA:Security, MCSE: Security, Security+, CPTS, VCP4, CCA (XenApp6.5), MCSA 2012, VCP5, VCP6-NV
  9. craigie

    craigie Terabyte Poster

    3,020
    173
    155
    Yeah it's mugging me right off.

    The fact is that he connects OK, just not passing any traffic.

    Using his same account on a different laptop at home works fine, and no other users have any issues.

    So we know its localised.
     
    Certifications: CCA | CCENT | CCNA | CCNA:S | HP APC | HP ASE | ITILv3 | MCP | MCDST | MCITP: EA | MCTS:Vista | MCTS:Exch '07 | MCSA 2003 | MCSA:M 2003 | MCSA 2008 | MCSE | VCP5-DT | VCP4-DCV | VCP5-DCV | VCAP5-DCA | VCAP5-DCD | VMTSP | VTSP 4 | VTSP 5
  10. jk2447

    jk2447 Petabyte Poster Moderator

    5,482
    353
    249
    Just mentioned this to one of my lot and he said check the default gateway settings as a conflicting route might force the VPN out of the wrong interface, sorry mate up the wall I'll get him to explain. Got a VC in 1 minute. . .!
     
    Certifications: BSc (Hons), HND IT, HND Computing, ITIL-F, MBCS CITP, MCP (270,290,291,293,294,298,299,410,411,412) MCTS (401,620,624,652) MCSA:Security, MCSE: Security, Security+, CPTS, VCP4, CCA (XenApp6.5), MCSA 2012, VCP5, VCP6-NV
  11. Gingerdave

    Gingerdave Megabyte Poster

    991
    44
    74
    Have you tried creating a new user account on that laptop?
     
    Certifications: A+,MCP, MCDST, VCP5 /VCP-DV 5, MCTS AD+ Net Inf 2008, MCSA 2008
    WIP: MCSA 2012
  12. Sparky
    Highly Decorated Member Award

    Sparky Zettabyte Poster Moderator

    10,189
    296
    319
    Does the VPN connection obtain an IP address ok? Ive seen this before when the connection goes through ok but the laptop has a virtual 169 address so cant ping anything on the remote company LAN.
     
    Last edited: Mar 12, 2010
    Certifications: MSc MCSE MCSA:M MCSA:S MCITP:EA MCTS(x5) Security+ Network+ A+
    WIP: Exchange 2007\2010
  13. craigie

    craigie Terabyte Poster

    3,020
    173
    155
    OK fixed it and this is proper gay.

    Changed him from Network Cable to Wireless then turned ON Windows Firewall and added the exceptions for GRE and PPTP Ports and it worked.

    What a crock of sh*te!
     
    Certifications: CCA | CCENT | CCNA | CCNA:S | HP APC | HP ASE | ITILv3 | MCP | MCDST | MCITP: EA | MCTS:Vista | MCTS:Exch '07 | MCSA 2003 | MCSA:M 2003 | MCSA 2008 | MCSE | VCP5-DT | VCP4-DCV | VCP5-DCV | VCAP5-DCA | VCAP5-DCD | VMTSP | VTSP 4 | VTSP 5
  14. jk2447

    jk2447 Petabyte Poster Moderator

    5,482
    353
    249
    oh. . . . . ha ha I did say it would be something daft . . . . :eek:

    Well done anyway lar :biggrin
     
    Certifications: BSc (Hons), HND IT, HND Computing, ITIL-F, MBCS CITP, MCP (270,290,291,293,294,298,299,410,411,412) MCTS (401,620,624,652) MCSA:Security, MCSE: Security, Security+, CPTS, VCP4, CCA (XenApp6.5), MCSA 2012, VCP5, VCP6-NV
  15. Sparky
    Highly Decorated Member Award

    Sparky Zettabyte Poster Moderator

    10,189
    296
    319
    What OS is he using mate?
     
    Certifications: MSc MCSE MCSA:M MCSA:S MCITP:EA MCTS(x5) Security+ Network+ A+
    WIP: Exchange 2007\2010
  16. craigie

    craigie Terabyte Poster

    3,020
    173
    155
    XP mate.
     
    Certifications: CCA | CCENT | CCNA | CCNA:S | HP APC | HP ASE | ITILv3 | MCP | MCDST | MCITP: EA | MCTS:Vista | MCTS:Exch '07 | MCSA 2003 | MCSA:M 2003 | MCSA 2008 | MCSE | VCP5-DT | VCP4-DCV | VCP5-DCV | VCAP5-DCA | VCAP5-DCD | VMTSP | VTSP 4 | VTSP 5
  17. Sparky
    Highly Decorated Member Award

    Sparky Zettabyte Poster Moderator

    10,189
    296
    319
    Ahh, thought it might have been Vista\Win7. Seen a few problems when windows FW is switched off.

    Good fix mate. :thumbleft
     
    Certifications: MSc MCSE MCSA:M MCSA:S MCITP:EA MCTS(x5) Security+ Network+ A+
    WIP: Exchange 2007\2010
  18. supernova

    supernova Gigabyte Poster

    1,422
    21
    80
    I would move to L2TP IPSEC as PPTP isn't that secure due to its authentication methods
     
    Certifications: Loads
    WIP: Lots

Share This Page

Loading...