Details, eh?
My SME server is connected to the Internet via DSL. I connect to the VPN (PPTP) from a Windows 2000 professional machine from a remote network. I consider the connection to be successful when I:
-> A. authenticate
-> B. connect to a share
-> C. transfer a file (4 to 5 MB)
-> D. open server-manager in a web browser
-> E. open an RDP connection to the Win2k3 server
-> F. open a VNC connection to my Linux workstation
-> G. run my IMAP e-mail client to the server
The Win2k workstation can successfully get through step E in that list -- I've not tried the others siince, if RDP works (fat as it is) then the others should work as well.
I've attempted to connect from two different machines on two different remote networks, one running WinXP Pro SP2 and all the latest patches, and one running a bare WinXP Pro install unpatched except for the addition of 128-bit encryption. In both cases I can get through step B in my above list. Nothing else works. The client application hangs, and packet captures indicate an eventual time-out and the server closing the connection.
I set up my test laptop on the external network segment to my SME server, so that there is no router or external firewall between it and SME. I configured the laptop to dual-boot Win2k and WinXP Pro. One machine, two OSes, same behaviour: 2000 works like a dream, XP can only access shares.
The symptoms are reminiscent of MTU issues, so on one machine I tweaked the MTU settings in the XP registry, but it did no good. There are no errors in the XP event log, and the SME syslog ony displays the one error I listed in my last post, Jan 22 22:23:14 orinoco kernel: mppe_compress[0]: osize too small! (have: 1400 need: 1404).
The only non-standard thing this SME server does is NIS, as some of my local users run Unix workstations and I haven't had time to play with winbind. I'm not sure how NIS could selectively prevent WinXP hosts from using the VPN. Everything else is stock SME.
6 Replies
3065 Views