Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Question
Thursday, October 5, 2017 8:12 PM
Here's the situation: I connect to the vpn server (using Cisco Anyconnect 4). Then I use Windows Remote Desktop to connect to the remote machine. Sometimes it’s one of the servers at one client site, sometimes it’s a desktop at a different site, but through the same vpn server. The same thing happens in either case. VPN still shows connected, but Remote Desktop connects, then within 30-60 seconds disconnects, and won’t reconnect on its own. I have to close RDP and connect again – and the same thing happens. So it appears that vpn isn't disconnecting, but something is causing RDP to disconnect.
This only happens with my new work laptop. My old work laptop connects and stays connected. My personal laptop at home connects and stays connected. (All are Windows 10 – the problem one is W10 Pro, the others are W10 Home. All have the same Anyconnect client)
Also – If I use RDP to connect to a server here at the office (without VPN), it stays connected. And if I connect from home to our office VPN using the Fortinet client, it stays connected. The problem only happens on this one laptop, with the Cisco Anyconnect client. I’ve uninstalled and reinstalled a couple of times, with no success.
Help Desk for the vpn server agency says it's a desktop problem on my end and they can't/won't help. I agree that it's likely some type of configuration issue, but I'm out of ideas on where to look - I just need to get some work done. I've disabled IPv6, but that hasn't helped the issue. Anybody know what's going on here?
All replies (9)
Thursday, October 5, 2017 8:45 PM
Hello, have you attempted to disable your local firewall on the laptop?
Also, did some googling, and a few have stated that the clientcli.exe will not work, but the clientGUI.exe will. I've used this in the past, but was usually accustomed to adjusting the ASA on the other end.
Steve W. MCSA,CCNA,MCP,A+,SEC+,CIW
Friday, October 6, 2017 6:48 AM
Hi,
It may be related the transmission of the rdp packet through the vpn, check the logs on the firewall when the user connects and then gets disconnected.
You also could run a packet capture and check firewall policy.
Clear DSN cache and reset TCP/IP.
ipconfig /flushdns
Hope it will be helpful to you
Please remember to mark the replies as answers if they help.
If you have feedback for TechNet Subscriber Support, contact [email protected].
Friday, October 6, 2017 3:29 PM
I tried disabling the firewall, that didn't help. I'm not sure what clientcli.exe and clientGUI.exe are, can you elaborate?
Thanks,
Harry
Friday, October 6, 2017 3:32 PM
Hi,
It may be related the transmission of the rdp packet through the vpn, check the logs on the firewall when the user connects and then gets disconnected.
You also could run a packet capture and check firewall policy.
Clear DSN cache and reset TCP/IP.
ipconfig /flushdns
Hope it will be helpful to you
Check the logs on the firewall on my laptop, or at the server? If it's at the server, given their lack of help so far, I would have to tell them explicitly what to look for, and I'm not enough of a network person to be able to do that. I do databases, I just want to get to my databases! ;-)
I'll trying ipconfig and see if that helps.
Thanks,
Harry
Friday, October 6, 2017 3:35 PM
Also - is there a way to verify that my vpn session is still actually connected when remote desktop disconnects? They've disabled ping for security reasons, but it would help to know if the vpn session has dropped even though my client thinks it's connected.
Harry
Friday, October 6, 2017 3:42 PM
telnet or ssh to the machine you are trying to RDP into; if the other connection drops when the RDP does I would put money on the firewall provider.
Friday, October 6, 2017 4:25 PM
OK, I set up Windows Firewall With Advanced Security to see dropped packets. Here's what I got after I connected and then almost immediately got disconnected:
at 11:17:22 - "A Windows Firewall setting has changed - New Setting - Type: Current Profile, Value: Private,Public
at 11:17:22 - "Network profile changed on an interface" - Old profile: None, New Profile: Public
at 11:17:25 - "A Windows Firewall setting has changed - New Setting - Type: Current Profile, Value: Private"
at 11:17:25 - "Network profile changed on an interface" - Old profile: Public, New Profile: Private"
That's all that was in the log. Is the problem somehow tangled up in there?
Thanks,
Harry
Friday, October 6, 2017 5:10 PM
a better alternative would be to line monitor the connection with a program like wireshark.
Wednesday, October 11, 2017 4:29 PM | 1 vote
Well, now that I have lined up some ways to monitor it - it's stopped happening. I've been able to maintain a remote connection for over an hour on each of the last two days.
Harry