"Robert L [MS-MVP]" wrote:

> Can you ping the computer by IP? is yes, can you telnet port 3389?
>
> Bob Lin, MS-MVP, MCSE & CNE
> Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
> How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
>   "Nancy R" <Nan***@discussions.microsoft.com> wrote in message news:5FF45AD5-EB21-4825-95AA-37D47FA9C763@microsoft.com...
>   Hi folks,
>
>   I've got a strange one that I need some help with:
>
>   We have two subnets (more actually but that's beside the point), and I am
>   having some difficulties using RDP across one of them.
>
>   *I can remote to workstations and the server on subnet 2 from subnet 1 by
>   name and by IP.  All of these computers are a member of our W2K3 domain.
>   *I cannot remote to one workstation on subnet 2 from subnet 1 by name or IP.
>    This computer is not a member of the domain.
>   *I can remote to this workstation from the server on subnet 2 by name and by
>   IP.
>   *We don't have this problem on other subnets, even with PCs that are not on
>   the domain.
>
>   I know there is something on subnet 1 causing the problem but I have no idea
>   where to start looking.
>
>   All machines are XP with SP2 (server is W2K3 SP1), firewalls off.  I've
>   checked our VPN and hardware firewall settings, I didn't see anything that
>   would be blocking this (from what I can tell).
>
>   We use Sonicwall units for our hardware firewall and VPN tunnel.
>
>   Any suggestions at all would be appreciated, it's a pain to have to remote
>   to the server and then to the remote workstation.
>
>   TIA,
>   Nancy

"Nancy R" wrote:

> I can't ping or telnet from here.  I can ping from the subnet it is on but I
> can't telnet to port 3389 or 23.
>
> "Robert L [MS-MVP]" wrote:
>
> > Can you ping the computer by IP? is yes, can you telnet port 3389?
> >
> > Bob Lin, MS-MVP, MCSE & CNE
> > Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
> > How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
> >   "Nancy R" <Nan***@discussions.microsoft.com> wrote in message news:5FF45AD5-EB21-4825-95AA-37D47FA9C763@microsoft.com...
> >   Hi folks,
> >
> >   I've got a strange one that I need some help with:
> >
> >   We have two subnets (more actually but that's beside the point), and I am
> >   having some difficulties using RDP across one of them.
> >
> >   *I can remote to workstations and the server on subnet 2 from subnet 1 by
> >   name and by IP.  All of these computers are a member of our W2K3 domain.
> >   *I cannot remote to one workstation on subnet 2 from subnet 1 by name or IP.
> >    This computer is not a member of the domain.
> >   *I can remote to this workstation from the server on subnet 2 by name and by
> >   IP.
> >   *We don't have this problem on other subnets, even with PCs that are not on
> >   the domain.
> >
> >   I know there is something on subnet 1 causing the problem but I have no idea
> >   where to start looking.
> >
> >   All machines are XP with SP2 (server is W2K3 SP1), firewalls off.  I've
> >   checked our VPN and hardware firewall settings, I didn't see anything that
> >   would be blocking this (from what I can tell).
> >
> >   We use Sonicwall units for our hardware firewall and VPN tunnel.
> >
> >   Any suggestions at all would be appreciated, it's a pain to have to remote
> >   to the server and then to the remote workstation.
> >
> >   TIA,
> >   Nancy

"Nancy R" <Nan***@discussions.microsoft.com> wrote in message
news:2577A5A5-3CF9-45B9-9A33-540E9EA7702E@microsoft.com...
> Hi folks,
>
> I thought I would check again to see if anyone had any ideas.
>
> I need to get this sorted as we have a desktop support tech who needs to
> be
> able to access this machine but we don't necessarily want them to be able
> to
> logon to the DC on the subnet.
>
> Thanks in advance, I'm not sure how to work through this one so I
> appreciate
> all the help.
>
> Nancy
>
> "Nancy R" wrote:
>
>> I can't ping or telnet from here.  I can ping from the subnet it is on
>> but I
>> can't telnet to port 3389 or 23.
>>
>> "Robert L [MS-MVP]" wrote:
>>
>> > Can you ping the computer by IP? is yes, can you telnet port 3389?
>> >
>> > Bob Lin, MS-MVP, MCSE & CNE
>> > Networking, Internet, Routing, VPN Troubleshooting on
>> > http://www.ChicagoTech.net
>> > How to Setup Windows, Network, VPN & Remote Access on
>> > http://www.HowToNetworking.com
>> >   "Nancy R" <Nan***@discussions.microsoft.com> wrote in message
>> > news:5FF45AD5-EB21-4825-95AA-37D47FA9C763@microsoft.com...
>> >   Hi folks,
>> >
>> >   I've got a strange one that I need some help with:
>> >
>> >   We have two subnets (more actually but that's beside the point), and
>> > I am
>> >   having some difficulties using RDP across one of them.
>> >
>> >   *I can remote to workstations and the server on subnet 2 from subnet
>> > 1 by
>> >   name and by IP.  All of these computers are a member of our W2K3
>> > domain.
>> >   *I cannot remote to one workstation on subnet 2 from subnet 1 by name
>> > or IP.
>> >    This computer is not a member of the domain.
>> >   *I can remote to this workstation from the server on subnet 2 by name
>> > and by
>> >   IP.
>> >   *We don't have this problem on other subnets, even with PCs that are
>> > not on
>> >   the domain.
>> >
>> >   I know there is something on subnet 1 causing the problem but I have
>> > no idea
>> >   where to start looking.
>> >
>> >   All machines are XP with SP2 (server is W2K3 SP1), firewalls off.
>> > I've
>> >   checked our VPN and hardware firewall settings, I didn't see anything
>> > that
>> >   would be blocking this (from what I can tell).
>> >
>> >   We use Sonicwall units for our hardware firewall and VPN tunnel.
>> >
>> >   Any suggestions at all would be appreciated, it's a pain to have to
>> > remote
>> >   to the server and then to the remote workstation.
>> >
>> >   TIA,
>> >   Nancy

"Sooner Al [MVP]" wrote:

> Any chance your running a software firewall on that particular PC that is
> blocking incoming RDP requests? If its the XP SP2 Windows Firewall its
> possible the firewall is configured to only allow access from its subnet
> versus from any IP...
>
> http://theillustratednetwork.mvps.org/ScreenShots/SP2WindowsFirewall/FirewallAddressScopeConfiguration.jpg
>
> --
>
> Al Jarvi (MS-MVP Windows Networking)
>
> Please post *ALL* questions and replies to the news group for the
> mutual benefit of all of us...
> The MS-MVP Program - http://mvp.support.microsoft.com
> This posting is provided "AS IS" with no warranties, and confers no
> rights...
>
>
> "Nancy R" <Nan***@discussions.microsoft.com> wrote in message
> news:2577A5A5-3CF9-45B9-9A33-540E9EA7702E@microsoft.com...
> > Hi folks,
> >
> > I thought I would check again to see if anyone had any ideas.
> >
> > I need to get this sorted as we have a desktop support tech who needs to
> > be
> > able to access this machine but we don't necessarily want them to be able
> > to
> > logon to the DC on the subnet.
> >
> > Thanks in advance, I'm not sure how to work through this one so I
> > appreciate
> > all the help.
> >
> > Nancy
> >
> > "Nancy R" wrote:
> >
> >> I can't ping or telnet from here.  I can ping from the subnet it is on
> >> but I
> >> can't telnet to port 3389 or 23.
> >>
> >> "Robert L [MS-MVP]" wrote:
> >>
> >> > Can you ping the computer by IP? is yes, can you telnet port 3389?
> >> >
> >> > Bob Lin, MS-MVP, MCSE & CNE
> >> > Networking, Internet, Routing, VPN Troubleshooting on
> >> > http://www.ChicagoTech.net
> >> > How to Setup Windows, Network, VPN & Remote Access on
> >> > http://www.HowToNetworking.com
> >> >   "Nancy R" <Nan***@discussions.microsoft.com> wrote in message
> >> > news:5FF45AD5-EB21-4825-95AA-37D47FA9C763@microsoft.com...
> >> >   Hi folks,
> >> >
> >> >   I've got a strange one that I need some help with:
> >> >
> >> >   We have two subnets (more actually but that's beside the point), and
> >> > I am
> >> >   having some difficulties using RDP across one of them.
> >> >
> >> >   *I can remote to workstations and the server on subnet 2 from subnet
> >> > 1 by
> >> >   name and by IP.  All of these computers are a member of our W2K3
> >> > domain.
> >> >   *I cannot remote to one workstation on subnet 2 from subnet 1 by name
> >> > or IP.
> >> >    This computer is not a member of the domain.
> >> >   *I can remote to this workstation from the server on subnet 2 by name
> >> > and by
> >> >   IP.
> >> >   *We don't have this problem on other subnets, even with PCs that are
> >> > not on
> >> >   the domain.
> >> >
> >> >   I know there is something on subnet 1 causing the problem but I have
> >> > no idea
> >> >   where to start looking.
> >> >
> >> >   All machines are XP with SP2 (server is W2K3 SP1), firewalls off.
> >> > I've
> >> >   checked our VPN and hardware firewall settings, I didn't see anything
> >> > that
> >> >   would be blocking this (from what I can tell).
> >> >
> >> >   We use Sonicwall units for our hardware firewall and VPN tunnel.
> >> >
> >> >   Any suggestions at all would be appreciated, it's a pain to have to
> >> > remote
> >> >   to the server and then to the remote workstation.
> >> >
> >> >   TIA,
> >> >   Nancy
>