SBS 2008 VPN and Windows 7
|
From: Simon Thomson on 6 May 2010 01:11 I have successfully set up a PTPP VPN from SBS 2008, and got host name resolution working correctly using these instructions: http://nicholas.piasecki.name/blog/2009/06/getting-wins-like-computer-name-resolution-over-vpn-in-sbs-2008/ Then the other day our MD surprises me with a new laptop (for himself). The new machine was joined to the domain and the VPN connection set up. Today he mentioned that he cannot resolve host names over the VPN. I have tested this to confirm. Host name resolution does not work under Windows 7, hosts can be reached via IP address. i.e. \\server\share fails while \\192.168.10.5\share works. Host name resolution over the VPN works fine on XP machines. The VPN connection on the Windows 7 machine seems to be getting its DNS Server IP from the Firewall at work rather than DHCP. I have tried to manually set the DNS server for the VPN connection on the Windows 7 machine but it does not work. Others seem to be having this issue but no resolutions have been found yet. I am currently working around the by adding the relevant servers and IP addressed to the hosts file on the Windows 7 machine, this works but I prefer less manual and more elegant methods. Any suggestions? Thanks for reading. Simon.
From: Cris Hanna [SBS - MVP] on 6 May 2010 10:46 do you have network discovery turned on in Windows 7? -- Cris Hanna [SBS - MVP] (since 1997) Co-Contributor, Windows Small Business Server 2008 Unleashed http://www.amazon.com/Windows-Small-Business-Server-Unleashed/dp/0672329573/ref=pd_bbs_sr_1?ie=UTF8&s=books&qid=1217269967&sr=8-1 Owner, CPU Services, Belleville, IL A Microsoft Registered Partner ------------------------------------ MVPs do not work for Microsoft Please do not submit questions directly to me. "Simon Thomson" <simon(a)specterra.com.au> wrote in message news:FF167FF5-2D70-43FF-92C1-6B1CBBDFF857(a)microsoft.com... I have successfully set up a PTPP VPN from SBS 2008, and got host name resolution working correctly using these instructions: http://nicholas.piasecki.name/blog/2009/06/getting-wins-like-computer-name-resolution-over-vpn-in-sbs-2008/ Then the other day our MD surprises me with a new laptop (for himself). The new machine was joined to the domain and the VPN connection set up. Today he mentioned that he cannot resolve host names over the VPN. I have tested this to confirm. Host name resolution does not work under Windows 7, hosts can be reached via IP address. i.e. \\server\share fails while \\192.168.10.5\share works. Host name resolution over the VPN works fine on XP machines. The VPN connection on the Windows 7 machine seems to be getting its DNS Server IP from the Firewall at work rather than DHCP. I have tried to manually set the DNS server for the VPN connection on the Windows 7 machine but it does not work. Others seem to be having this issue but no resolutions have been found yet. I am currently working around the by adding the relevant servers and IP addressed to the hosts file on the Windows 7 machine, this works but I prefer less manual and more elegant methods. Any suggestions? Thanks for reading. Simon.
From: Simon Thomson on 10 May 2010 02:09 Hi Chris, thanks for your time. Network discovery is on in the "Home or Work" Profile but not in the "Domain" profile. I have turned it on in the "Domain" profile but the setting will not stick. Others seem to be having this issue so I will continue to investigate. Cheers Simon. "Cris Hanna [SBS - MVP]" <crisnospamhanna(a)cpunospamservices.net> wrote in message news:O4oKqrS7KHA.2220(a)TK2MSFTNGP04.phx.gbl... do you have network discovery turned on in Windows 7? -- Cris Hanna [SBS - MVP] (since 1997) Co-Contributor, Windows Small Business Server 2008 Unleashed http://www.amazon.com/Windows-Small-Business-Server-Unleashed/dp/0672329573/ref=pd_bbs_sr_1?ie=UTF8&s=books&qid=1217269967&sr=8-1 Owner, CPU Services, Belleville, IL A Microsoft Registered Partner ------------------------------------ MVPs do not work for Microsoft Please do not submit questions directly to me. "Simon Thomson" <simon(a)specterra.com.au> wrote in message news:FF167FF5-2D70-43FF-92C1-6B1CBBDFF857(a)microsoft.com... I have successfully set up a PTPP VPN from SBS 2008, and got host name resolution working correctly using these instructions: http://nicholas.piasecki.name/blog/2009/06/getting-wins-like-computer-name-resolution-over-vpn-in-sbs-2008/ Then the other day our MD surprises me with a new laptop (for himself). The new machine was joined to the domain and the VPN connection set up. Today he mentioned that he cannot resolve host names over the VPN. I have tested this to confirm. Host name resolution does not work under Windows 7, hosts can be reached via IP address. i.e. \\server\share fails while \\192.168.10.5\share works. Host name resolution over the VPN works fine on XP machines. The VPN connection on the Windows 7 machine seems to be getting its DNS Server IP from the Firewall at work rather than DHCP. I have tried to manually set the DNS server for the VPN connection on the Windows 7 machine but it does not work. Others seem to be having this issue but no resolutions have been found yet. I am currently working around the by adding the relevant servers and IP addressed to the hosts file on the Windows 7 machine, this works but I prefer less manual and more elegant methods. Any suggestions? Thanks for reading. Simon.
From: Simon Thomson on 13 May 2010 00:49 This is resolved, thanks for putting me on the right track Chris. There were two issues: 1) I had additional DNS servers configured in DHCP (other than the SBS 2008 box). Even though the SBS IP was top of the list the VPN connections from the clients refused to take it as top preference. I removed the other DNS servers from the DHCP config. 2) Network Discovery is off by default in the Domain Profile on Windows 7. You can enable it manually or push it out via Group Policy. Dave Bishop (MSFT) has good instructions on how to do so here. For those with non HTML readers: ============================================================================================================ You can easily turn on Network Discovery by using Group Policy. 1. In the Group Policy editor on a Win7 or Windows Server 2008 R2 computer, open the GPO that you want to use in the Group Policy Editor. 2. Expand "Computer Configuration", "Windows Settings", "Security Settings", "Windows Firewall with Advanced Security", and then "Windows Firewall with Advanced Security - {policy you have open}". 3 Right-click "Inbound Rules", and then click "New Rule". 4 In the Rule Wizard, on the Rule Type page, select"Predefined", and then select Network Discovery from the list. Click Next. 5 On the Predefined Rules page, ensure that the check box is on each rule that is part of the Network Discovery group, and then click Next. 6 On the Action page, select "Allow the Connection", and then click Finish. The rules are now part of the GPO. Assign it to the proper scope, and you should be good to go. You must use a Win7 or 2008R2 computer to edit the policy so that the Win7 options are included in the editor. I hope this helps!! ------------------------------------------------------------------------------ Dave Bishop Senior Technical Writer Windows Server Networking User Assistance ============================================================================================================ Cheers Simon "Cris Hanna [SBS - MVP]" <crisnospamhanna(a)cpunospamservices.net> wrote in message news:O4oKqrS7KHA.2220(a)TK2MSFTNGP04.phx.gbl... do you have network discovery turned on in Windows 7? -- Cris Hanna [SBS - MVP] (since 1997) Co-Contributor, Windows Small Business Server 2008 Unleashed http://www.amazon.com/Windows-Small-Business-Server-Unleashed/dp/0672329573/ref=pd_bbs_sr_1?ie=UTF8&s=books&qid=1217269967&sr=8-1 Owner, CPU Services, Belleville, IL A Microsoft Registered Partner ------------------------------------ MVPs do not work for Microsoft Please do not submit questions directly to me. "Simon Thomson" <simon(a)specterra.com.au> wrote in message news:FF167FF5-2D70-43FF-92C1-6B1CBBDFF857(a)microsoft.com... I have successfully set up a PTPP VPN from SBS 2008, and got host name resolution working correctly using these instructions: http://nicholas.piasecki.name/blog/2009/06/getting-wins-like-computer-name-resolution-over-vpn-in-sbs-2008/ Then the other day our MD surprises me with a new laptop (for himself). The new machine was joined to the domain and the VPN connection set up. Today he mentioned that he cannot resolve host names over the VPN. I have tested this to confirm. Host name resolution does not work under Windows 7, hosts can be reached via IP address. i.e. \\server\share fails while \\192.168.10.5\share works. Host name resolution over the VPN works fine on XP machines. The VPN connection on the Windows 7 machine seems to be getting its DNS Server IP from the Firewall at work rather than DHCP. I have tried to manually set the DNS server for the VPN connection on the Windows 7 machine but it does not work. Others seem to be having this issue but no resolutions have been found yet. I am currently working around the by adding the relevant servers and IP addressed to the hosts file on the Windows 7 machine, this works but I prefer less manual and more elegant methods. Any suggestions? Thanks for reading. Simon.
|
Pages: 1 Prev: SBS 2003 system resource problem - HELP! Next: Emails via Mobile & Exchange receiving issue |