Home | Site Map | Cisco How To Net How To | Wireless | Search | Forums | Services | Setup Guide | Chicagotech MVP | About Us | Contact Us|

Name Resolution on VPN

Can't access domain resource when establishing a VPN from Vista
Can't access remote PC because of VPN
Can ping FQDN but not host name
Can't ping VPN client by name
cant resolve server by DNS when connecting using PPTP VPN
Connection issues on DC, ISA, DNS and WINS server as VPN server
DNS and Split Tunneling for VPN?
How to assign DNS and WINS on VPN client manually
Name resolution Issue in a VPN client
Outlook doesn't work over VPN
VPN name resolution issues
Name resolution on VPN

"No domain server was available" while the dialup connection is active
VPN Name Resolution
VPN server is a Virtual Multihomed Server
VPN client don't appear in Network Neighborhood/My Network Places
VPN clients can't browse remote computers in Network Neighborhood/My Network Places

Can ping FQDN but not host name

Symptoms: after establishing VPN, you can't ping the server name. However, you can ping FQDN, for example,  server1.chicagotech.net.

Cause 1: The VPN user can access all servers using host name except one. However, we can ping the server using iP or FQDN. We found hiss laptop has lmhosts pointing the server using different IP address. Removing the IP address from the lmhosts, it works.

Case 2. Missing the DNS suffixes. Setup DNS suffixes.

 Case 3: install the WINS server on the VPN server and assign the WINS server to VPN client.

Can't ping VPN client by name

Symptom: you can ping the vpn client by ip but when attempting to ping a vpn client from remote LAN, you get time out.
Resolution: 1)  if you have correct DNS and WINS settings, you should be able to ping vpn client by name.
2) If you get the time out with a different ip (for example, ping ip is 192.168.100.7 and real ip is 192.168.100.13), check the dns and wins records and delete the 192.168.100.7.
3) If the dns and wins records don't show the client record, make sure it points to the same and correct dns and wins.
4) If the VPN client doesn't register its DNS, you may need to go the VPN connection properties>networking>TCP/IP. On the DNS tab, enter the DNS server IP in DNS suffix for this connection and check Register this connection's addresses in DNS. Or use ipconfig /registerdns command.
5) Also make sure all computers are pointing to the same DNS.

Connection issues on DC, ISA, DNS and WINS server as VPN server

Symptom: You have a Windows 2000/2003 server is configured as VPN running DNS, WINS, you may experience some connection issues. 1) the internal computers can't ping the server by name; 2) if the server is a DC and Master Browser, you may have a computer browsing issue; 3) you may receive Event ID: 4319 - A duplicate name has been detected on the tcp network; 4) You may receive error messages like "No Logon Servers Available to Service your Logon Request" when you try to open file shares or map network drives to the Routing and Remote Access server; 5) if the server is also a DC, you may not be able to logon the domain; 6) if the server is also running ISA, you cannot browse the Web from client computers on the local network, regardless of whether the computers are configured to use Web Proxy or the Microsoft Firewall Client. For example, "The page cannot be displayed" may appear in the Web browser with a "cannot find server or DNS" error message.

Cause: When a VPN client connects to the VPN server, the server creates a PPP adapter to communicate with the remote computer. The server may then register the IP address of this PPP adapter in the DNS or the WINS database. When the internal computers try to connect to the IP address of the PPP adapter, them cannot reach the PPP adapter, then the connections fail.

Resolution: Name resolution and connectivity issues on a RRAS that also runs DC, DNS or WINS

How to assign DNS and WINS on VPN client manually

Name resolution is big issue in VPN access. If your VPN server doesn't setup correctly or the VPN client can't receive the VPN DNS and WINS settings, you may setup them yourself. To do this, go to the VPN connection>properties>TCP/IP properties>Advanced. Click DNS and WINS tabs to assign the VPN server's DNS and WINS.

Name resolution Issue in a VPN client

To assign the DNS and WINS to a VPN client for name resolution, you should configure VPN server with the IP addresses of the appropriate DNS and WINS servers. The VPN client inherits the DNS and WINS configured on the VPN server. If name resolution does not work from the VPN server, it will not work for VPN clients. Note: WINS is name resolution for host name or NetBIOS name and DNS is for FDQN. If you can't ping the host name, you may try to ping FQDN.

Name Resolution and Connectivity Issues on W2K Domain Controller with RRAS and DNS Installed

Symptoms: You may experience some name resolution and connectivity issues if the W2K domain controller is configured with RRAS and DNS. After a remote client establishes a connection by using Dial-Up Networking, one or more of the following symptoms may occur: 1. Internal clients may no longer be able to browse the Web.
2. A "cannot find server or DNS" error occurs when using nslookup.
3. When using PING to ping the name of the server on an Internal client, it returns any other address other than the IP address that is bound to the server's internal adapter.
4. You cannot browse through the list of computers in Network Neighborhood or My Network Places.
5. You may receive Event ID: 4319, Source: Netbt. Description: A duplicate name has been detected on the tcp network. The IP address of the machine that sent the message is in the data. Use NBTSTAT with a switch of N in a command window to see which name is in a conflict state.
6. W2K/XP clients cannot map a network drive to the server. The client may receive the following error message: No Logon Servers Available to Service your Logon Request.

Resolutions: 1. Install the latest service pack.
2. Make sure the clients have correct DNS and WINS settings.
3. Disable NetBIOS for all RRAS connections.
4. Double-click on the entries for the servername[00h], and servername[20h] to verify that there is only 1 IP address on them.

Note: Refer to MS Q292822

"No domain server was available" while the dialup connection is active

Symptom: you have  windows 2000 domain controller with DNS, DHCP, WINS and Dialup connection. Whenever the dialup connection is active, none client can't logon and gets a message "No domain server was available to to validate your password. You may not be able to gain access to some network resources"

Resolution: On the server, make sure you don't have "Register this connection's addresses in DNS" checked under TCP/IP Advanced DNS settings. To check this, go to the Properties of the dialup connection> the Properties of the TCP/IP>Advanced>DNS, uncheck "Register this connection's addresses in DNS"

VPN server is a Virtual Multihomed Server

After enabling RRAS on a DC with WINS and DNS server, you may have some Master Browser, WINS or/and connectivity issues. That reason is that VPN server is a Virtual Multihomed Server. The resolution is to disable NetBIOS Over TCP/IP and DNS register on all interfaces including RRAS interfaces except the internal interface.

VPN client don't appear in remote LAN's Network Neighborhood/My Network Places

Normally, VPN clients don't appears in Network Neighborhood/My Network Places on the LAN. If you want the VPN clients to appear on the LAN browse list, you may need to install NetBEUI on the RAS server and RAS clients. This peculiarity is a known problem with RAS, but no fix is available at press time.

  This web is provided "AS IS" with no warranties.
Copyright 2002-2013 ChicagoTech.net, All rights reserved. Unauthorized reproduction forbidden.