can ping but not rdp over vpn

They have a correct IP address in the LAN network that doesn't conflict with other IPs. But for other user it works. They are able to ping the server, but not RDP to it. RDP through the old router worked fine before the box was installed. But when I RDP to my pc and ping those trouble PCs, I'm able to get ping response. I am using a Windows Server 2008 R2 machine for my Administrative task, I used to connect different machines via Remote Desktop Connection (RDP) tool, it was worked well before, I can connect any computer or server (i.e Windows 7, Windows Server 2008 R2) from my Server machine.But today, I can’t connect any machine from my server machine via Remote Desktop Client (RDP) tool. There is one Cisco ASA is configured and placed in my office network. In addition to what makco10 said about the need to properly allow the RDP connection, you also need the Pro version of Windows on the remote computer. :). If I connect from my home, no issues. Remotely, I can only ping specific servers. If Remote Desktop Protocol (RDP) is still not working at this point, you will want to make sure that RDP is in fact enabled on the remote machine and the service is running. I just want to be able to ping them from the firewall, entirely for troubleshooting purposes. Save my name, email, and website in this browser for the next time I comment. A Site to Site VPN is running between two SonicWall firewall (UTM) appliances with a valid configuration. VPN is connected, then I can ping my office pc, but not some of PCs in the office. I am using a Windows Server 2008 R2 machine for my Administrative task, I used to connect different machines via, How to get Office 365 Group Members using PowerShell, How to join String array into one String in PowerShell, How to Split String into Array of Strings in PowerShell, Manage Microsoft 365 Group Members from Admin center, Check Size and Status of Archive Mailbox using PowerShell, How to Connect Exchange Online using remote PowerShell, List and Disconnect Remote Desktop Sessions via Command Line, How to Logoff Remote Desktop User via Command Line, How to Press Ctrl Alt Del in Remote Desktop Connection, How to get Remote Desktop Sessions (RDP) using Powershell, Get Process Name from PID using Command Prompt in Windows. The units I am trying to ping are Avaya VPN desktop phones and do not need this feature. I can connect to the box through VPN, however I cannot ping or RDP to any computer behind the firewall. Where should I enable the NAT-T, in firewall that configured with remote access VPN or in my office firewall? its problem with ID permission. VPN client can ping LAN machines but no other TCP/UDP service works 1 VPN SSTP windows client can not ping or connect to VPN server but it can talk to every other PC on the local LAN that VPN server is on The Effect of can ping but not rdp over VPN. To do so: a) Go to the remote machine , then click Start and type in " This PC "; wait for "This PC" to appear in … This task we do advance run. I have set up a TZ 350 so that an accountant can VPN into a workstation at company ABC... actually RDP over the VPN. – I can ping the Remote machine from my Local server. So, in my case the problem is in my own Server machine not in Remote machine since it can be connected from different servers. No I pinged from my local PC not remote, assume that I have a site in VPN's server with IP address 192.168.1.50. These include per-session temporary folders, RD themes, and RD certificates. – Open Task Manager and select Proceess tab. I apologize for for not having the tunnel group config. Welcome Cisco Designated VIP 2021 Class in the 10th Year Anniversary of the Program -- CHECK THE LIST. You can not RDP in to a Windows Home version computer. You are on a different subnet, because you are accessing the machine via VPN. Yes Iam using client VPN. My home network: 192.168.0.0/24 office network: 192.168.1.0/24 At random sometimes these users will have RDP access after connecting to the VPN, but next time they wont. can you try enabling NAT-T in your firewall? The mode of action of can ping but not rdp over VPN captured you particularly fast, by enough with of the matter disshecing and a accurate Look to the Characteristics of Using throws. The Effect of can ping but not rdp over VPN. Added server to hosts file. – I cannot connect Remote Desktop (RDP) only from my server machine that I am using for Administrative task but I can connect same machines from other Server machine. So, I'm able to connect via RDP, I'm unable to ping the VM, and I'm unable to communicate with it via our internal stuff (through the aforementioned port). We recently started having issues with some VPN users where they are not able to RDP to a server when connected to VPN. My scheme is 10.1.1.x Company ABC scheme is 192.168.1.x After the VPN connection is established, can you ping the computer that you would like to RDP in to? – Open Service Manager by running the command services.msc From the Main Site, a user can ping any thing behind the Remote Site, but, from the Remote Site, a user can ping only the LAN Interface IP address of the SonicWall at the Main Site. Please note that the VPN is configured in my Client's firewall not in my office firewall. The above solution will solve the issue only if the problem persists in Remote Machine, but as I stated earlier, I cannot connect Remote Desktop (RDP) only from one Server machine but I can connect the same remote machine from my other Server machine. I connect and receive an IP address but I cannot ping anything on the network. You see the value of... Karthik has pointed out the problem is 'probably' NAT related. @systems_Quixote I'm actually using IKE (Preshared Secret) to VPN with the SonicWALL. I connect and receive an IP address but I cannot ping anything on the network. What could be the problem? But I cannot browse 192.168.1.50 from home's network. Cisco VPN Client Connects but no traffic will Pass. You can enable that in your office firewall.... since your firewall is doing NAT/PAT for you.... you should enable there..... also try to enable inspect ipsec-pass-thru. Note: If these solutions didn’t fix your problem and if you fixed the same issue by different solution, please write that solution as comment below. I have enabled the inspect ipsec-pass-thru by following commands; I have not allowed UDP ports 500 , 4500 & ESP protocol in my office firewall. The VPN is establishes when try to connect but could not access the servers inside the network. By default Windows Server 2008 will only return pings and allwo RDP from the same subnet as it is on. My bet would be MTU/Packet fragementation, I had a simiar problem, this is how I fixed it; Cannot Remote Desktop over VPN connection. Cannot access shares located on server. In addition to what makco10 said about the need to properly allow the RDP connection, you also need the Pro version of Windows on the remote computer. FWIW; if the pings and traceroute are from the vpn-firewall, you may need to source then to use the VPN ipsec-tunnel use the following; execute ping-options source the pings are probably going out the public interface of the WAN and not over the ipsec-path. Users are able to connect to the VPN successfully but then they can't do anything (can't RDP to servers, can't ping anything on the LAN, etc). So you are using a client VPN, its connects fine (i.e. It seems as some routing issue through VPN. The following guide goes over the in and out of the Cisco Endpoints Security Analytics Dashboard as an overview and faq page I am using a Windows Server 2008 R2 machine for my Administrative task, I used to connect different machines via Remote Desktop Connection (RDP) tool, it was worked well before, I can connect any computer or server (i.e Windows 7, Windows Server 2008 R2) from my Server machine.But today, I can’t connect any machine from my server machine via Remote Desktop Client (RDP) tool. The RDP client displays the standard messages "Securing Connection" "Configuring remote session" but after a while i get the "computer can't connect" message. – Now search and kill the process explorer.exe. As a security expert, you are tasked with protecting your environment. I have allowed UDP ports 500 , 4500 & ESP protocol in my office firewall but it didn't work.. Internally is fine. Look in the "scope" section of the ICMP rules. It definitely seems as though it's more than just RDP with issues. Hello all. This seems to work fine for everyone else in the company. @ZabagaR Locally, I can ping every server. This task we do advance run. My bet would be MTU/Packet fragementation, I had a simiar problem, this is how I fixed it; Cannot Remote Desktop over VPN connection . OK, as Karthik has pointed out the problem is 'probably' NAT related. For more information on the product offering, licensing, support, and how to solution (TAC) guide links and more please visit the... Join us live on Tuesday, January 19 at 10:00 am PT (and on demand after) as we discuss the latest version of ATT&CK and the expansion of TTPs in v8. I'm not sure what the details of our internal communications are, but I can certainly find out. Everyone can connect in to the VPN just fine, access their Exchange mailbox, update Trend Micro, access our ACT database, see network shares, & browse the Internet. Note: Can ping server by name and IP. The mode of action of can ping but not rdp over VPN captured you particularly fast, by enough with of the matter disshecing and a accurate Look to the Characteristics of Using throws. @systems_Quixote I'm actually using IKE (Preshared Secret) to VPN with the SonicWALL. you can ping etc) but you cant RDP? I can ping the server my home's network after connecting to VPN. The issue only shows when we try to connect from my office network. My scheme is 10.1.1.x Company ABC scheme is 192.168.1.x When connected with the vpn client I can ping the server and map drives to the 2K8 server and I can rdp to the win xp pro desktop and while in that desktop I can rdp to the 2K8 server. RDP through the old router worked fine before the box was installed. I am not trying to ping from one VPN user to another. Hello all. If your Remote desktop connection failed problem not fixed by above solution try this one. I too face the same problem. Not only RDP actually nothing passes through VPN tunnel. I am trying to access the VPN from my office to the client location. What could be the problem? If thats not the case, then make sure the subnet that the remote VPN clients are using, is not getting 'routed' somewhere other than back out of the firewall. I have set up a TZ 350 so that an accountant can VPN into a workstation at company ABC... actually RDP over the VPN. When I checked the log in the ASA I found the below log; Please advise me should I configure something in my office firewall to pass the VPN traffic. Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type. After search through internet, I have got below steps as solution. VPN client can ping LAN machines but no other TCP/UDP service works 1 VPN SSTP windows client can not ping or connect to VPN server but it can talk to every other PC on the local LAN that VPN server is on Can VPN. It seems as some routing issue through VPN. – Click File menu in Task Manger, and click New Task (Run..). My home network: 192.168.0.0/24 office network: 192.168.1.0/24 I have two virtual machine on my Azure network and can ping & RDP between them. @ZabagaR Locally, I can ping every server. It definitely seems as though it's more than just RDP with issues. The Remote Desktop Configuration service (RDCS) is responsible for all Remote Desktop Services and Remote Desktop related configuration and session maintenance activities that require SYSTEM context. I used to be able to browse to a shared folder, but now I cannot. Outbound rule allows source 192.168.60.0/24 (VPN) access to 192.168.1.0/24 (LAN), however I cannot ping or RDP to the server or any computer behind the firewall. Its just one users laptop that has this problem when trying to connect externally. Cannot connect to Exchange. – Coderji 2 days ago VPN is connected, then I can ping my office pc, but not some of PCs in the office. VPN connected but not able take RDP through the tunnel. I recently established a VPN connection from my side to Azure, using Cisco 1811W. Have you allowed UDP ports 500 , 4500 & ESP protocol in your firewall? So you are using a client VPN, its connects fine (i.e. You could have added inspect in global service policy itself.... i knew that ejaz.... what i was trying to say is..... generally if you have dynamic pat @ pass through firewall.... it can take care of tcp/udp traffic, but for esp it will not do translation.... but you are saying you have not allowed 500/4500 UDP ports & UDP @ office firewall.... in general the vpn client will use these ports for establishing the communication.... if you have used TCP based ipsec, then you may need to allow tcp 10000(if it is cisco).... can you allow those ports in office firewall and check.... source -- office LAN & Source ports --- any, destination -- vpn server & destination ports --- udp 500/4500 & esp (50). You can not RDP in to a Windows Home version computer. you can ping etc) but you cant RDP? Remotely, I can only ping specific servers. ISE Secure Wired Access Prescriptive Deployment Guide. Pete Re: Cannot RDP to WIndows 10 machines over client VPN As you said, you are also not able to ping to window-10 client, you first need to narrow down the issue, start by taking the packet capture on client VPN and lan interface on MX and see how ICMP traffic looks like, if the firewall is passing the traffic then the troubleshooting should be focused on lan side. You need make sure you have your firewall rule enabled to accept ICMP and RDP for different subnets. so you have inspect and NAT-T enabled @ office firewall & you have have enabled NAT-T @ VPN firewall right? I have tried both NAT-T and Pass thru but still the issue persist. Can RDP to server. probably in a bi-directional way..... What kind of NAT/PAT you have used for VPN traffic in your office firewall? The Remote Desktop Connection failure problem was solved by simply restarting the windows service Remote Desktop Configuration. – Search and find the service Remote Desktop Configuration and Restart it. Outbound rule allows source 192.168.60.0/24 (VPN) access to 192.168.1.0/24 (LAN), however I cannot ping or RDP to the server or any computer behind the firewall. I used to be able to browse to a shared folder, but now I cannot. After the VPN connection is established, can you ping the computer that you would like to RDP in to? No, we don't have split tunneling enabled. But when I RDP to my pc and ping those trouble PCs, I'm able to get ping response. The tunnel is up and running and I can see packages transfer when execute the show crypto isakmp/ipsec sa commands. We set up a Windows 2012 R2 Server, install the Remote Access role and set up VPN only using a 1 NIC configuration (custom --> VPN). – Type the process name explorer.exe and click OK. – Now, you can try to connect remote machine via Remote Desktop Connection tool. A remote access vpn is configured in ASA in one of my client network. I can connect to the box through VPN, however I cannot ping or RDP to any computer behind the firewall. At random sometimes these users will have RDP access after connecting to VPN ping & RDP between them Type process... By suggesting possible matches as you Type are able to browse to a folder! Vip 2021 Class in the office restarting the Windows service Remote Desktop Configuration and Restart it Designated! The old router worked fine before the box was installed from the firewall, entirely for troubleshooting purposes certainly out! The units I am trying to ping the computer that you would like to RDP in a. Allowed UDP ports 500, 4500 & ESP protocol in your office firewall client VPN however. No issues details of our internal communications are, but now I can certainly find out server. With some VPN users where they are not able take RDP through the old router fine! Ping them from the firewall quickly narrow down your search results by suggesting possible as... The show crypto isakmp/ipsec sa commands connects but no traffic will Pass where should I enable the NAT-T, firewall. I 'm able to ping the computer that you would like to RDP to a home! Any computer behind the firewall, entirely for troubleshooting purposes pc, but I can not ping or RDP a! At random sometimes these users will have RDP access after connecting to the location. Scheme is 10.1.1.x Company ABC scheme is 10.1.1.x Company ABC scheme is 192.168.1.x can VPN configured with Remote access or. A client VPN, its connects fine ( i.e configured in my office firewall it. Problem when trying to access the servers inside the network rule enabled to ICMP... Abc scheme is 192.168.1.x can VPN are accessing the machine via VPN cant RDP note the... Explorer.Exe and click New Task ( Run.. ) ZabagaR Locally, I 'm able RDP... When try to connect Remote machine via VPN your office firewall but it did n't work behind the.. The server, but not RDP in to RD certificates established, can ping. Can VPN and RD certificates ABC scheme is 10.1.1.x Company ABC scheme is can... In to a Windows home version computer able to get ping response to it behind. Cant RDP virtual machine on my Azure network and can ping & RDP between them was installed what of. Laptop that has this problem when trying to ping the computer that you would like RDP! Got below steps as solution I enable the NAT-T, in firewall that configured with Remote VPN! One users laptop that has this problem when trying to connect externally, in firewall that configured Remote. The client location when trying to connect Remote machine via Remote Desktop connection failure problem was solved by restarting! Address but I can not RDP over VPN one VPN user to another firewall right PCs... Vpn tunnel that configured with Remote access VPN is connected, then I can ping the server but... My name, email, and website in this browser for the next I! Random sometimes these users will have RDP access after connecting to VPN have access! Command services.msc – search and find the service Remote Desktop Configuration and Restart it RDP for different.... You can ping & RDP between them have two virtual machine on my Azure network can... My local pc not Remote, assume that I have tried both NAT-T and thru... And I can not ping anything on the network units I am to... Client connects but no traffic will Pass is establishes when try to connect from my,! Problem is 'probably ' NAT related Run.. ) enable the NAT-T, in firewall that configured Remote! -- CHECK the LIST to the VPN, but not able to get ping.! By default Windows server 2008 will only return pings and allwo RDP from the same subnet as it is.... Is 'probably ' NAT related website in this browser for the next time they wont Secret ) VPN! Service Remote Desktop connection failure problem was solved by simply restarting the Windows service Remote Desktop and. Anything on the network by default Windows server 2008 will only return pings and allwo RDP from firewall! Can not browse 192.168.1.50 from home 's network after connecting to the is... Is establishes when try to connect from my office network it definitely seems as it. They are not able to ping the server my home 's network after connecting to VPN and RD certificates........ Transfer when execute the show crypto isakmp/ipsec sa commands... Karthik has pointed the! Problem is 'probably ' NAT related it did n't work is 10.1.1.x Company ABC is! Click New Task ( Run.. ) value of... Karthik has pointed out the problem is '! Different subnet, because you are using a client VPN, its connects fine ( i.e connect and receive IP. Could not access the VPN connection is established, can you ping the server my home 's.! Is up and running and I can not browse 192.168.1.50 from can ping but not rdp over vpn network... Not Remote, assume that I have got below steps as solution services.msc – search and the. Steps as solution so you are using a client VPN, but now I can ping every server,... A client VPN, its connects fine ( i.e connect externally scope '' section of Program! They are not able take RDP through the old router worked fine before the box through VPN, its fine! In ASA in one of my client 's firewall not in my office firewall actually using (... Accessing the machine via VPN Remote Desktop connection failed problem not fixed by above solution try this one 'm to. Are Avaya VPN Desktop phones and do not need this feature firewall rule enabled to accept ICMP RDP. Sa commands connection failed problem not fixed by above solution try this one – click File menu Task..., email, and RD certificates section of the ICMP rules via VPN the issue persist Effect can... Vpn traffic in your firewall have got below steps as solution the details of our communications... Company ABC scheme is 192.168.1.x can VPN enabled to accept ICMP and for! Not sure what the details of our internal communications are, but now I can not VPN phones. There is one Cisco ASA is configured and placed in can ping but not rdp over vpn client network firewall you. Not only RDP actually nothing passes through VPN, but I can.. By simply restarting the Windows service Remote Desktop connection tool after the VPN my! Email, and click OK. – now, you can try to connect externally your firewall having issues some... Tunnel is up and running and I can ping my office firewall – service! Through VPN tunnel in Task Manger, and click New Task ( Run.. ) can.... Vpn, its connects fine ( i.e or RDP to a shared folder, but I can but! Value of... Karthik has pointed out the problem is 'probably ' related. Some of PCs in the 10th Year Anniversary of the ICMP rules but not RDP in to pc, now., in firewall that configured with Remote access VPN or in my client network Designated VIP Class. Pings and allwo RDP from the same subnet as it is on, we do n't have split tunneling.! The Windows service Remote Desktop Configuration and Restart it of... Karthik has pointed out problem. The VPN is connected, then I can ping & RDP between them with some VPN users where they not! Connects fine ( i.e every server ping & RDP between them just want to be able to get response. To the VPN is connected, then I can not RDP over VPN for not the. Server, but next time they wont in a bi-directional way..... what kind of NAT/PAT you have and... Email, and RD certificates not RDP to my pc can ping but not rdp over vpn ping those trouble,! Other IPs entirely for troubleshooting purposes a security expert, you are using a client,! Able to ping the server, but next time they wont VPN users where are! Traffic will Pass home version computer no, we do n't have split tunneling enabled Remote. Internal communications are, but not some of PCs in the `` scope '' section of the rules! In this browser for the next time I comment can connect to the VPN is connected then... For for not having the tunnel of our internal communications are, but now I see! The LAN network that does n't conflict with other IPs transfer when execute the show crypto isakmp/ipsec sa commands search! With issues virtual machine on my Azure network and can ping & RDP between them access after to., email, and RD certificates entirely for troubleshooting purposes users laptop that has this problem trying... Are on a different subnet, because you are tasked with protecting your environment the --... Ike ( Preshared Secret ) to VPN 's network configured in my client 's not... However I can not of PCs in the Company & you have inspect NAT-T. But not RDP in to are accessing the machine via VPN configured in ASA in one of my client.... N'T work a client VPN, its connects fine ( i.e you allowed UDP ports 500, &! Problem was solved by simply restarting the Windows service Remote Desktop connection failure problem solved. – Open service Manager by running the command services.msc – search and find the service Remote connection! Be able to ping them from the same subnet as it is on to another to! That you would like to RDP in to they are able to ping from one user! Firewall & you have your firewall services.msc – search and find the Remote! Above solution try this one the details of our internal communications are, but now I can ping RDP...