Unable to connect to a remote server via RDP over a VPN tunnel
I am unable to access a windows 2003 server at a remote location. The server does communicate with an interface server on my side just fine. I can ping and trace route to the server with no issues. Everything seems to be ok EXCEPT when I try to RDP to the server. I can statically assign the server inside address to an outside address at the remote location, and I can remote in to the server from the outside address just fine, so that leads me to believe it is something on my VPN config.
When I try to access the server from here, I get this from the PIX:
02106: Rec'd packet not an IPSEC packet.
I have a 1721 router with DSL at the remote location with the following crypto config and ACL for the VPN traffic. The 172.25.*.* is the remote location LAN, the 198.*.*.* and 10.*.*.*being subnets on my local LAN:
RDP packet is been intercepted but it is not encasulated in the tunnel thus droping it.
Things that come in mind would be the IPsec rules at the peer end allowing RDP, the other end have to allow port 3389 as well as the source or nated IP you are tring the rdp from to be part of this particular tunnel policy.
Re: Unable to connect to a remote server via RDP over a VPN tunn
I would start by making your ACL's mirror each other for the IPSec communication to function correctly. Also if its only a specific protocol/port you are having with across the VPN tunnel verify you are seeing packets encrypted and decrypted correctly. Turn up some debugs as well and see where its breaking. From my experience your output given is usually associated with the tunnel seeing the traffic as interesting outbound and the return traffic is not encrypted since the other side does not deem it interesting.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...