dslreports logo
 
    All Forums Hot Topics Gallery
spc
Search similar:


uniqs
728
gpx
join:2014-09-24
United State

gpx

Member

PPTP VPN no internet on 7 yes internet on XP

Hi guys, so I'm having a very weird issue. I run a VPN company and on one of my dedicated servers with 100 ips, I have for example 50 users setup. And each user is getting a static ip assigned to them. One user is having an issue where he can login to his pptp vpn but he cant surf the web or anything, he runs mac.

I tested it out on a vmware image with xp and everything ran perfectly, then just out of curiosity i tested it out on my own pc with windows 7 and am having the same issue as he was having of no internet.

Any ideas?
HELLFIRE
MVM
join:2009-11-25

HELLFIRE

MVM

said by gpx:

I run a VPN company and on one of my dedicated servers

Oh so you're one of those types I rant about here
said by HELLFIRE:

Business Plan :
1) buy a fat pipe
2) buy some servers to run PPTP / OpenVPN
3) punch out a template to push to users
4) promise x,y, and z
5) ...
6) profit!

...what about troubleshooting / support? SOMEone's left holding the bag.[/rant off]



PLEASE tell me you have some knowledge of the OSI model and how to troubleshoot at each layer there, cuz offhand, the commands
ping, traceroute, and netstat is where you're going to have to start with this.

You're also going to have to find commands/tools/logs to run on your PPTP server to see what's going on there as well. Once you got that, should be able to go from there.

My initial 00000010bits

Regards
gpx
join:2014-09-24
United State

gpx

Member

said by HELLFIRE:

said by gpx:

I run a VPN company and on one of my dedicated servers

Oh so you're one of those types I rant about here
said by HELLFIRE:

Business Plan :
1) buy a fat pipe
2) buy some servers to run PPTP / OpenVPN
3) punch out a template to push to users
4) promise x,y, and z
5) ...
6) profit!

...what about troubleshooting / support? SOMEone's left holding the bag.[/rant off]



PLEASE tell me you have some knowledge of the OSI model and how to troubleshoot at each layer there, cuz offhand, the commands
ping, traceroute, and netstat is where you're going to have to start with this.

You're also going to have to find commands/tools/logs to run on your PPTP server to see what's going on there as well. Once you got that, should be able to go from there.

My initial 00000010bits

Regards

Haha you got me! I probably am one of those unfortunately, but I do not want to remain in that category. Would love to learn all that stuff you just mentioned, but am having a hard time finding resources to begin learning. Do you have any recommendations on what books, websites, etc I should be reading to learn how to properly troubleshoot these types of errors.

And do you have any recommendation on how to start troubleshooting this particular problem, would greatly appreciate it. Thanks!
HELLFIRE
MVM
join:2009-11-25

HELLFIRE to gpx

MVM

to gpx
Any good networking book is a good place to start -- the "For Dummies" should give you a good overview of the OSI model and how it works.

For ping -- should tell you whether there's end-to-end layer 3 connectivity between the host with no internet and your PPTP server.
Be aware that packetfilters / firewalls can block ping, but like I said, it's a place to start.

For traceroute -- should tell you whether there is a network path between the host with no internet and your PPTP server. Like
ping, it may be blocked.

For netstat -- you'll have to check the associated command switches, but for your PPTP server, if you see something like this

Proto  Local Address                   Foreign Address                              State
TCP    <ip of your PPTP server:1723    <ip of computer with no internet>:49156      ESTABLISHED
 

tells you that there's an active connection between the two.

Who provides the PPTP software? Guessing it's MS Windows (Server) ? If so, I'd hit up Microsoft's site for a PPTP troubleshooting guide.

Hope that starts you off. My 00000010bits

Regards

TheGiant
Sup
join:2001-03-28
Tipp City, OH

TheGiant

Member

I going to guess DNS or Firewall issues
gpx
join:2014-09-24
United State

gpx to HELLFIRE

Member

to HELLFIRE
Thanks guys much appreciate the advice, I just bought this book hopefully its good:

»www.amazon.com/Networkin ··· KIKX0DER

Yes its a windows server and I set it up using this tutorial:

»www.thomasmaurer.ch/2010 ··· 2008-r2/

Can you provide some of the basic commands that I can type in cmd to troubleshoot this issue would be very grateful thanks
bblanks
join:2014-09-26

bblanks

Member

no advice on cmd but that is a really good book to start with. I read it a long time ago.

»www.hideiponline.com
HELLFIRE
MVM
join:2009-11-25

HELLFIRE to gpx

MVM

to gpx
C:\Users>ping /?
 
Usage: ping [-t] [-a] [-n count] [-l size] [-f] [-i TTL] [-v TOS]
            [-r count] [-s count] [[-j host-list] | [-k host-list]]
            [-w timeout] [-R] [-S srcaddr] [-4] [-6] target_name
 
Options:
    -t             Ping the specified host until stopped.
                   To see statistics and continue - type Control-Break;
                   To stop - type Control-C.
    -a             Resolve addresses to hostnames.
    -n count       Number of echo requests to send.
    -l size        Send buffer size.
    -f             Set Don't Fragment flag in packet (IPv4-only).
    -i TTL         Time To Live.
    -v TOS         Type Of Service (IPv4-only. This setting has been deprecated
                   and has no effect on the type of service field in the IP Head
er).
    -r count       Record route for count hops (IPv4-only).
    -s count       Timestamp for count hops (IPv4-only).
    -j host-list   Loose source route along host-list (IPv4-only).
    -k host-list   Strict source route along host-list (IPv4-only).
    -w timeout     Timeout in milliseconds to wait for each reply.
    -R             Use routing header to test reverse route also (IPv6-only).
    -S srcaddr     Source address to use.
    -4             Force using IPv4.
    -6             Force using IPv6.
 

C:\Users>tracert /?
 
Usage: tracert [-d] [-h maximum_hops] [-j host-list] [-w timeout]
               [-R] [-S srcaddr] [-4] [-6] target_name
 
Options:
    -d                 Do not resolve addresses to hostnames.
    -h maximum_hops    Maximum number of hops to search for target.
    -j host-list       Loose source route along host-list (IPv4-only).
    -w timeout         Wait timeout milliseconds for each reply.
    -R                 Trace round-trip path (IPv6-only).
    -S srcaddr         Source address to use (IPv6-only).
    -4                 Force using IPv4.
    -6                 Force using IPv6.
 

C:\Users>netstat /?
 
Displays protocol statistics and current TCP/IP network connections.
 
NETSTAT [-a] [-b] [-e] [-f] [-n] [-o] [-p proto] [-r] [-s] [-t] [interval]
 
  -a            Displays all connections and listening ports.
  -b            Displays the executable involved in creating each connection or
                listening port. In some cases well-known executables host
                multiple independent components, and in these cases the
                sequence of components involved in creating the connection
                or listening port is displayed. In this case the executable
                name is in [] at the bottom, on top is the component it called,
                and so forth until TCP/IP was reached. Note that this option
                can be time-consuming and will fail unless you have sufficient
                permissions.
  -e            Displays Ethernet statistics. This may be combined with the -s
                option.
  -f            Displays Fully Qualified Domain Names (FQDN) for foreign
                addresses.
  -n            Displays addresses and port numbers in numerical form.
  -o            Displays the owning process ID associated with each connection.
  -p proto      Shows connections for the protocol specified by proto; proto
                may be any of: TCP, UDP, TCPv6, or UDPv6.  If used with the -s
                option to display per-protocol statistics, proto may be any of:
                IP, IPv6, ICMP, ICMPv6, TCP, TCPv6, UDP, or UDPv6.
  -r            Displays the routing table.
  -s            Displays per-protocol statistics.  By default, statistics are
                shown for IP, IPv6, ICMP, ICMPv6, TCP, TCPv6, UDP, and UDPv6;
                the -p option may be used to specify a subset of the default.
  -t            Displays the current connection offload state.
  interval      Redisplays selected statistics, pausing interval seconds
                between each display.  Press CTRL+C to stop redisplaying
                statistics.  If omitted, netstat will print the current
                configuration information once.
 

I'd search Microsoft's site for any tips and tricks they have to troubleshoot from a Windows perspective.

Regards

BlueMist
join:2011-01-24
Cookeville, TN

BlueMist to gpx

Member

to gpx
I'm sure you have already tried this but verify that on the W7 machine you started OpenVPN at administrator level. On one of my systems the link would come up but if not started using the administrator level the routes would not get pushed to the W7 machine stopping internet thru the remote end.

Verify there are no error message in the W7 OpenVPN log file starting when you first bring up the link.