Vista can't RDP over VPN Problem...

I have a LAN at work which consists of 2 Win2000 Servers which are
Active Directory Controllers.

I have a WIn2008 Member Server which is providing the VPN service onto
our company LAN.

I have WinXP Pro at home, and I have no problem at all connecting to
the VPN and running RDP to remotely connect to any computer on our
LAN.

The Office Manager wanted to work from home, so I tried to set her up.
Her home computer has Windows VIsta Ultimate.

After a few configuration tweaks, she was able to connect to the VPN
and authenticate.

However, she was NOT able to RDP into any of the computers on the LAN.
Note: All computers on the company LAN are Win XP Pro.

I have an alternate method (thank God). I had her close the VPN
connection, and I have a dedicated computer behind the firewall with a
static IP and port 3389 forwarded to it. I had her RDP into our static
internet IP, and she was able to connect directly to that computer and
then double-hop to her LAN computer.

SO....

It appears to me that there is nothing wrong with her computer since
RDP does work when connecting directly to another machine via the
hardware router (when properly forwarded).

So the question then becomes...

Why can I RDP via VPN from my home onto the LAN, and she cannot?

I am part of the "Administrators" group, and I tried makeing her one
also, but this solved nothing.

The only other difference I noticed was that my Dial-Up policy is
"ALLOW", whereas hers is set to use policy to determine if a
connection is allowed. What I have is a VPN users group, and I am
using that group to allow connections.

This users is the first "normal" user that I am trying to connect -
there will be others!

Any input would be greatly appreciated.

Thanks

Your problem is a "Vista" vs Firewall thing. I had the same problem with our
Checkpoint NG R55 firewall and using RDP to access our DMZ through the
firewall.

See if your firewall is on the list, changes need to be made to the Vista
machine and the firewall.
http://support.microsoft.com/kb/934430

hth
DDS

"NewMan" <(E-Mail Removed)> wrote in message
news:(E-Mail Removed)...
>I have a LAN at work which consists of 2 Win2000 Servers which are
> Active Directory Controllers.
>
> I have a WIn2008 Member Server which is providing the VPN service onto
> our company LAN.
>
> I have WinXP Pro at home, and I have no problem at all connecting to
> the VPN and running RDP to remotely connect to any computer on our
> LAN.
>
> The Office Manager wanted to work from home, so I tried to set her up.
> Her home computer has Windows VIsta Ultimate.
>
> After a few configuration tweaks, she was able to connect to the VPN
> and authenticate.
>
> However, she was NOT able to RDP into any of the computers on the LAN.
> Note: All computers on the company LAN are Win XP Pro.
>
> I have an alternate method (thank God). I had her close the VPN
> connection, and I have a dedicated computer behind the firewall with a
> static IP and port 3389 forwarded to it. I had her RDP into our static
> internet IP, and she was able to connect directly to that computer and
> then double-hop to her LAN computer.
>
> SO....
>
> It appears to me that there is nothing wrong with her computer since
> RDP does work when connecting directly to another machine via the
> hardware router (when properly forwarded).
>
> So the question then becomes...
>
> Why can I RDP via VPN from my home onto the LAN, and she cannot?
>
> I am part of the "Administrators" group, and I tried makeing her one
> also, but this solved nothing.
>
> The only other difference I noticed was that my Dial-Up policy is
> "ALLOW", whereas hers is set to use policy to determine if a
> connection is allowed. What I have is a VPN users group, and I am
> using that group to allow connections.
>
> This users is the first "normal" user that I am trying to connect -
> there will be others!
>
> Any input would be greatly appreciated.
>
> Thanks