General discussion

Locked

Demand on Dial Router to Router VPN

By claywilson ·
I have 2 Win2k router-to-router VPN servers. One in my corporate location and one in my remote office location. I have a Domain Controller in my corp and my remote location. I have setup the two VPN servers to establish a VPN connection to each other. It works fine. BUT...my goal is to have active directory replicate over this VPN connection to the server in the remote location. So once I establish the VPN connection and try to force a replication it gives me an error. It says something like "The following error occured during the attempt to sychronize the domain controllers. The RPC server is unavailable. The condition could be DNS related...blah..blah"

Can anyone help me? I have looked at DNS and I cannot find anything wrong.

This conversation is currently closed to new comments.

7 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Comments

Collapse -

by zaferus In reply to Demand on Dial Router to ...

If your replications are timed perhaps schedule a ping (batch file) to force the VPN connection a few minutes before replication starts? It could be that your VPN is still establishing then the replication times out...

To help more it would ne nice to know what routers you are using.

Zaf

Collapse -

by zaferus In reply to

I wonder if your AD is trying to make contact through the default gateway - which is your router. It could be directing packets to the wrong interface which then doesn't know what to do with the packets.

Under sites, can you set the IP address of your RRAS server to connect? If that doesn't work on your router set up a static route that will route those packets to the remote site via the RRAS server.

Zaf

Collapse -

by claywilson In reply to

Poster rated this answer.

Collapse -

by CG IT In reply to Demand on Dial Router to ...

well kinda depends upon if you've got Active Directory running; the security protocols you have enabled for RRAS e.g. MS CHAP or EAP; RPC over UDP port 53 [or TCP port 53] which is what DNS communicates on; and how the site-link is setup [again if it's an AD environment].

how about a little more detail on the configuarations you have.

Collapse -

by claywilson In reply to

Poster rated this answer.

Collapse -

by claywilson In reply to Demand on Dial Router to ...

Here is some more detail.

The 2 VPN routers are just Win2k Server pc's setup with RRAS. I am using a PPTP so the only authentication is username/password. What I have done is created a demand on dial interface on both ends and manually connected them by right clicking the interface and clicking connect. So the VPN is established between the 2 VPN routers. Next I goto AD Sited snd Services and try to replicate the AD to the DC in the remote location. Thats when the error comes up. So the connection is already established before I try to replicate so the timout thing cant be an issue.
Both the VPN routers have two nics; one internal and one external. They are both behind firewalls and the one at the corp office is a PIX and the one at the remote location is a Linksys Router.

I hope this helps.

Collapse -

by claywilson In reply to Demand on Dial Router to ...

This question was closed by the author

Back to Windows Forum
7 total posts (Page 1 of 1)  

Related Discussions

Related Forums