Problem PPTP VPN Issue

Discussion in 'Networks' started by craigie, Mar 12, 2010.

  1. craigie

    craigie Terabyte Poster

    3,020
    174
    155
    Mar 12, 2010 #1
    Remove Advertisement - Premium Membership
    I have an issue with one user who VPN's in from home.

    He creates a PPTP VPN Connection, without any issues, but it does not pass any traffic.

    If we use another laptop in his house it works fine, so we know the issue is localised to his laptop.

    I have performed the following which has not resolved:

    - Disabled Windows Firewall
    - Disabled Home Router Firewall (rebooted this and office Firewall)
    - Reapplied all NAT and Firewall Policies both end including GRE.
    - Netsh winsock reset
    - Netsh int ip reset

    Any ideas
     
    Certifications: CCA | CCENT | CCNA | CCNA:S | HP APC | HP ASE | ITILv3 | MCP | MCDST | MCITP: EA | MCTS:Vista | MCTS:Exch '07 | MCSA 2003 | MCSA:M 2003 | MCSA 2008 | MCSE | VCP5-DT | VCP4-DCV | VCP5-DCV | VCAP5-DCA | VCAP5-DCD | VMTSP | VTSP 4 | VTSP 5
  2. Notes_Bloke

    Notes_Bloke Terabyte Poster

    3,230
    54
    146
    Mar 12, 2010 #2
    Remove Advertisement - Premium Membership
    Was the other laptop that you tried confirgured with the users account or another user account?

    NB
     
    Certifications: 70-210, 70-215, A+,N+, Security+
    WIP: MCSA
  3. JK2447
    Highly Decorated Member Award 500 Likes Award

    JK2447 Petabyte Poster Administrator Premium Member

    7,200
    951
    318
    Mar 12, 2010 #3
    Check TCP port 1723 is open
     
    Certifications: VCP4, 5, 6, 6.5, 6.7, 7, 8, VCAP DCV Design, VMConAWS Skill, Google Cloud Digital Leader, BSc (Hons), HND IT, HND Computing, ITIL-F, MBCS CITP, MCP (270,290,291,293,294,298,299,410,411,412) MCTS (401,620,624,652) MCSA:Security, MCSE: Security, Security+, CPTS, CCA (XenApp6.5), MCSA 2012, VSP, VTSP
    WIP: Google Cloud Certs
  4. craigie

    craigie Terabyte Poster

    3,020
    174
    155
    Mar 12, 2010 #4
    Same credentials, can dial in from another laptop.
     
    Certifications: CCA | CCENT | CCNA | CCNA:S | HP APC | HP ASE | ITILv3 | MCP | MCDST | MCITP: EA | MCTS:Vista | MCTS:Exch '07 | MCSA 2003 | MCSA:M 2003 | MCSA 2008 | MCSE | VCP5-DT | VCP4-DCV | VCP5-DCV | VCAP5-DCA | VCAP5-DCD | VMTSP | VTSP 4 | VTSP 5
  5. craigie

    craigie Terabyte Poster

    3,020
    174
    155
    Mar 12, 2010 #5
    Already done my friend, all ports reapplied 1723 and 47 for GRE both ends.

    On both Firewalls and also Windows Firewall as well.
     
    Certifications: CCA | CCENT | CCNA | CCNA:S | HP APC | HP ASE | ITILv3 | MCP | MCDST | MCITP: EA | MCTS:Vista | MCTS:Exch '07 | MCSA 2003 | MCSA:M 2003 | MCSA 2008 | MCSE | VCP5-DT | VCP4-DCV | VCP5-DCV | VCAP5-DCA | VCAP5-DCD | VMTSP | VTSP 4 | VTSP 5
  6. JK2447
    Highly Decorated Member Award 500 Likes Award

    JK2447 Petabyte Poster Administrator Premium Member

    7,200
    951
    318
    Mar 12, 2010 #6
    I don't suppose his laptop is XP SP2?

    Could also be his private addressing scheme conflicting with your companies i.e. both 10.0.0.0/24

    Just thinking out aloud mate, I've not had this problem TBH
     
    Last edited: Mar 12, 2010
    Certifications: VCP4, 5, 6, 6.5, 6.7, 7, 8, VCAP DCV Design, VMConAWS Skill, Google Cloud Digital Leader, BSc (Hons), HND IT, HND Computing, ITIL-F, MBCS CITP, MCP (270,290,291,293,294,298,299,410,411,412) MCTS (401,620,624,652) MCSA:Security, MCSE: Security, Security+, CPTS, CCA (XenApp6.5), MCSA 2012, VSP, VTSP
    WIP: Google Cloud Certs
  7. craigie

    craigie Terabyte Poster

    3,020
    174
    155
    Mar 12, 2010 #7
    Oops forgot to say mate, that was one of the things I had changed.
     
    Certifications: CCA | CCENT | CCNA | CCNA:S | HP APC | HP ASE | ITILv3 | MCP | MCDST | MCITP: EA | MCTS:Vista | MCTS:Exch '07 | MCSA 2003 | MCSA:M 2003 | MCSA 2008 | MCSE | VCP5-DT | VCP4-DCV | VCP5-DCV | VCAP5-DCA | VCAP5-DCD | VMTSP | VTSP 4 | VTSP 5
  8. JK2447
    Highly Decorated Member Award 500 Likes Award

    JK2447 Petabyte Poster Administrator Premium Member

    7,200
    951
    318
    Mar 12, 2010 #8
    Ah thats a mad one isn't it. If one laptop works and the other won't when he's at home, and I'd tried all the usual suspects, I suppose what I'd do is get both in front of me and play spot the difference going through the settings. Not ideal but sounds like this one is going to be something daft. If you are using PPTP check RRAS too mate.

    Its more messing but I'd want them to be using L2TP/IPSec myself
     
    Certifications: VCP4, 5, 6, 6.5, 6.7, 7, 8, VCAP DCV Design, VMConAWS Skill, Google Cloud Digital Leader, BSc (Hons), HND IT, HND Computing, ITIL-F, MBCS CITP, MCP (270,290,291,293,294,298,299,410,411,412) MCTS (401,620,624,652) MCSA:Security, MCSE: Security, Security+, CPTS, CCA (XenApp6.5), MCSA 2012, VSP, VTSP
    WIP: Google Cloud Certs
  9. craigie

    craigie Terabyte Poster

    3,020
    174
    155
    Mar 12, 2010 #9
    Yeah it's mugging me right off.

    The fact is that he connects OK, just not passing any traffic.

    Using his same account on a different laptop at home works fine, and no other users have any issues.

    So we know its localised.
     
    Certifications: CCA | CCENT | CCNA | CCNA:S | HP APC | HP ASE | ITILv3 | MCP | MCDST | MCITP: EA | MCTS:Vista | MCTS:Exch '07 | MCSA 2003 | MCSA:M 2003 | MCSA 2008 | MCSE | VCP5-DT | VCP4-DCV | VCP5-DCV | VCAP5-DCA | VCAP5-DCD | VMTSP | VTSP 4 | VTSP 5
  10. JK2447
    Highly Decorated Member Award 500 Likes Award

    JK2447 Petabyte Poster Administrator Premium Member

    7,200
    951
    318
    Mar 12, 2010 #10
    Just mentioned this to one of my lot and he said check the default gateway settings as a conflicting route might force the VPN out of the wrong interface, sorry mate up the wall I'll get him to explain. Got a VC in 1 minute. . .!
     
    Certifications: VCP4, 5, 6, 6.5, 6.7, 7, 8, VCAP DCV Design, VMConAWS Skill, Google Cloud Digital Leader, BSc (Hons), HND IT, HND Computing, ITIL-F, MBCS CITP, MCP (270,290,291,293,294,298,299,410,411,412) MCTS (401,620,624,652) MCSA:Security, MCSE: Security, Security+, CPTS, CCA (XenApp6.5), MCSA 2012, VSP, VTSP
    WIP: Google Cloud Certs
  11. Gingerdave

    Gingerdave Megabyte Poster

    990
    44
    74
    Mar 12, 2010 #11
    Have you tried creating a new user account on that laptop?
     
    Certifications: A+,MCP, MCDST, VCP5 /VCP-DV 5, MCTS AD+ Net Inf 2008, MCSA 2008
    WIP: MCSA 2012
  12. Sparky
    Highly Decorated Member Award 500 Likes Award

    Sparky Zettabyte Poster Moderator

    10,718
    543
    364
    Mar 12, 2010 #12
    Does the VPN connection obtain an IP address ok? Ive seen this before when the connection goes through ok but the laptop has a virtual 169 address so cant ping anything on the remote company LAN.
     
    Last edited: Mar 12, 2010
    Certifications: MSc MCSE MCSA:M MCSA:S MCITP:EA MCTS(x5) MS-900 AZ-900 Security+ Network+ A+
    WIP: Microsoft Certs
  13. craigie

    craigie Terabyte Poster

    3,020
    174
    155
    Mar 12, 2010 #13
    OK fixed it and this is proper gay.

    Changed him from Network Cable to Wireless then turned ON Windows Firewall and added the exceptions for GRE and PPTP Ports and it worked.

    What a crock of sh*te!
     
    Certifications: CCA | CCENT | CCNA | CCNA:S | HP APC | HP ASE | ITILv3 | MCP | MCDST | MCITP: EA | MCTS:Vista | MCTS:Exch '07 | MCSA 2003 | MCSA:M 2003 | MCSA 2008 | MCSE | VCP5-DT | VCP4-DCV | VCP5-DCV | VCAP5-DCA | VCAP5-DCD | VMTSP | VTSP 4 | VTSP 5
  14. JK2447
    Highly Decorated Member Award 500 Likes Award

    JK2447 Petabyte Poster Administrator Premium Member

    7,200
    951
    318
    Mar 12, 2010 #14
    oh. . . . . ha ha I did say it would be something daft . . . . :eek:

    Well done anyway lar :biggrin
     
    Certifications: VCP4, 5, 6, 6.5, 6.7, 7, 8, VCAP DCV Design, VMConAWS Skill, Google Cloud Digital Leader, BSc (Hons), HND IT, HND Computing, ITIL-F, MBCS CITP, MCP (270,290,291,293,294,298,299,410,411,412) MCTS (401,620,624,652) MCSA:Security, MCSE: Security, Security+, CPTS, CCA (XenApp6.5), MCSA 2012, VSP, VTSP
    WIP: Google Cloud Certs
  15. Sparky
    Highly Decorated Member Award 500 Likes Award

    Sparky Zettabyte Poster Moderator

    10,718
    543
    364
    Mar 12, 2010 #15
    What OS is he using mate?
     
    Certifications: MSc MCSE MCSA:M MCSA:S MCITP:EA MCTS(x5) MS-900 AZ-900 Security+ Network+ A+
    WIP: Microsoft Certs
  16. craigie

    craigie Terabyte Poster

    3,020
    174
    155
    Mar 13, 2010 #16
    XP mate.
     
    Certifications: CCA | CCENT | CCNA | CCNA:S | HP APC | HP ASE | ITILv3 | MCP | MCDST | MCITP: EA | MCTS:Vista | MCTS:Exch '07 | MCSA 2003 | MCSA:M 2003 | MCSA 2008 | MCSE | VCP5-DT | VCP4-DCV | VCP5-DCV | VCAP5-DCA | VCAP5-DCD | VMTSP | VTSP 4 | VTSP 5
  17. Sparky
    Highly Decorated Member Award 500 Likes Award

    Sparky Zettabyte Poster Moderator

    10,718
    543
    364
    Mar 13, 2010 #17
    Ahh, thought it might have been Vista\Win7. Seen a few problems when windows FW is switched off.

    Good fix mate. :thumbleft
     
    Certifications: MSc MCSE MCSA:M MCSA:S MCITP:EA MCTS(x5) MS-900 AZ-900 Security+ Network+ A+
    WIP: Microsoft Certs
  18. supernova

    supernova Gigabyte Poster

    1,422
    21
    80
    Mar 20, 2010 #18
    I would move to L2TP IPSEC as PPTP isn't that secure due to its authentication methods
     
    Certifications: Loads
    WIP: Lots

Share This Page

Loading...
Remove Advertisement - Premium Membership
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...