Windows Server

Richard Fagen · Guest

Hi Everyone,

I've been using DNS2GO.COM for a few clients but lately, I started
having VPN/RDP problems. People here suggested DynDNS.org instead.

I registered and downloaded a client (Direct Update 3.6.3) that works
perfectly with my home/office PC but doesn't work with SBS 2000. I
think it is an ISA or router issue.

The server has two NICs (internal 192.168.16.2, external 192.168.123.2).
I have a router (192.168.123.254) between the ext. NIC and the DSL modem.

Is there something I have to do to the Direct Update client or ISA
server to get the current dynamic address in the client software? Is
there a proxy setting or port I must open?

Thanks.

Richard Fagen

Javier Gomez [SBS MVP] · Guest

I'm not sure how changing Dynamic DNS provider is going to help you (unless
DNS2GO is not updating)... but the problem with DirectUpdate is most likely
a firewall thingy. Are you using ISA? Check the logs... I believe you need
to open a packet filter to port 80 (outbound), but I frankly don't remember.

Cheers,

--
Javier [SBS MVP]
www.msmvps.com/javier
<< SBS ROCKS!!! >>

"Richard Fagen" <no_spam@my_isp.com> wrote in message
news:O6YKLKx$EHA.2016@TK2MSFTNGP15.phx.gbl...

Richard Fagen · Guest

Hi Javier,

DNS2GO does work, but lately (sometimes after installing XP SP2), while
I can make the VPN, WINS doesn't work unless I disable the client's
Windows XP Firewall. This means RDP users must reference their PCs via
IP number (that changes) instead of the usually station's name.

For clients without DNS2GO, WINS works and I don't have to disable
anything. I suspect something changed with XP and/or DNS2GO. In any
case, I'd like to try DYNDNS.ORG instead to see it is makes a difference.

I agree with the 'firewall thingy' idea. Yes, I am using ISA. The
help says...

"Then, make sure that no firewall application (like ZoneAlarm) is
blocking TCP connection on port 40019 (default port)."

I opened this port in the router's setup. (strange, I forgot to open
the port in my home router, but it still worked) I'm not sure if I have
to do anything in ISA.

For other program (Mozilla), I already created entries to allow IP
traffic. I don't fully understand ISA and get confused between "Access
Policy" entries for "IP Packet Fileters" and "Protocol Rules". Do I
need to do anything for

Thanks

Richard

Javier Gomez [SBS MVP] wrote:

Javier Gomez [SBS MVP] · Guest

SuperGumby [SBS MVP] · Guest

you can also change ISA to accept 'basic authentication' and set DU to use
proxy settings.

"Javier Gomez [SBS MVP]" <javier_gomez@REMOVE.THIS.engineer.com> wrote in
message news:%23cQNCTy$EHA.3368@TK2MSFTNGP15.phx.gbl...

Richard Fagen · Guest

Hi Javier,

Thanks for the GREAT link. Now ISA is starting to make much more sense.
I see Protocol Rules are for the workstations/PC and Packet Filters are
for applications and services on the server. Finally, an explanation
in simple terms :)

As per your message, I created a new Packet Filter but it still doesn't
work. I'm sure I needed to do this too, so I suspect there is another
setting somewhere in DirectUpdate that I need to configure.

Richard Fagen · Guest

Hi,

This sounds like a great idea. I previously tried some setting in the
proxy area but I wasn't sure what the settings should be.

If the server's internal nic is the default 192.168.16.2 and the ext nic
is 192.168.123.2 and the router is 192.168.123.254, what should I enter
in DU's proxy text field? There is another checkbox that asks, "server
requires authentication?", then it displays textboxes for port (default
8080) and usernamne/password.

I tried many combinations but I think I'd better ask the ISA experts here.

How does one change ISA to accept basic authenication?

	Windows Server Forum Index -> Small Business Server 2000	All times are GMT
Page 1 of 1