Cannot terminal server into domain controller

Discussion in 'DNS Server' started by Damian F, Dec 22, 2004.

  1. Damian F

    Damian F Guest

    Hi,
    Just in the process of building a new domain controller with windows 2003
    server and i am having issues remotly accessing the server through remote
    desktop connection from an authenticated client machine. It will not connect.
    This client can ping the server, is this a DNS issue? Can anyone help me at
    all?

    Also, im after a good site that will give me RBL so i can block spam, anyone
    know of any good places i can look at on the net, i found
    http://www.email-policy.com/Spam-black-lists.htm, is this any good?

    -Damian

    PS- you can respond back to also.

    thanks again.
     
    Damian F, Dec 22, 2004
    #1
    1. Advertisements

  2. Damian F

    Herb Martin Guest

    connect.

    Just with Remote Desktop or other things?

    RDP could easily be blocked, or you might
    have a routing problem -- you didn't explain
    what you meant by "remote acccess".
    It's is NOT a DNS problem if you can ping using
    the name -- but if you can't do that and you can
    ping with the IP then it probably is.

    Easy to test, Remote Desktop with the IP (works
    just as well as the name and doesn't require name
    resolution.)
    Odd combination of requests but perhaps you might find
    these useful:

    sbl-xbl.spamhaus.org

    combined.njabl.org

    Finding one or several RBLs is easy, finding the best
    PAIR to work together with the least overlap is harder.

    Avoiding false positives is a whole other issue.
    You really have to monitor the newsgroups if you seek
    help here.
     
    Herb Martin, Dec 23, 2004
    #2
    1. Advertisements

  3. Damian F

    Damian F Guest

    Hi Herb,
    First of all, thankyou for your responce. Basically i just wanted to access
    the server through another client machine through remote desktop connection.
    I tried to ping the server using both the server name and ip address and it
    does ping it. Do you know what else i can do to enable remote desktop
    connection on this server?
     
    Damian F, Dec 23, 2004
    #3
  4. Did you enable RDP under My Computer properties?

    As for Spam detection, there are a number of products out there, depending
    on what you want to spend and whether you are looking for a client side or
    server side solution. I use something called ORF by Vamsoft. It works fine
    for me, but there is no antivirus piece to it. If you want antivirus as
    well, you'll have to shop for what you like best vs your budget. This should
    give you a start:
    http://www.nwfusion.com/reviews/2004/122004spampkg.html




    --
    Regards,
    Ace

    G O E A G L E S !!!
    Please direct all replies ONLY to the Microsoft public newsgroups
    so all can benefit.

    This posting is provided "AS-IS" with no warranties or guarantees
    and confers no rights.

    Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
    Microsoft Windows MVP - Windows Server - Directory Services

    Security Is Like An Onion, It Has Layers
    HAM AND EGGS: A day's work for a chicken;
    A lifetime commitment for a pig.
     
    Ace Fekay [MVP], Dec 23, 2004
    #4
  5. Damian F

    Herb Martin Guest

    "Ace Fekay [MVP]"
    message > Did you enable RDP under My Computer properties?

    Good suggestion. (See below...)

    Ok, we know you have basic IP connectivity
    due to the ping and Ace is directing you to
    make sure that RD is even enabled.

    Let's work though things using logic and the
    divide and conquer method.

    IP works.
    RD doesn't (apparently)

    Why? Is it the network, the server (e.g., did you enable
    it), or permissions/authentication?

    Definition: Server == machine you wish to RD into and use....


    You can discover if it is the network this way (open
    a command prompt and leave it open FOREVER):

    telnet ServerIPorName 3389

    IF you get a "hang" where it doesn't return to the command
    until after you press RETURN then likely the RDP protocol
    port is OPEN between you and the server.

    Why is this important? You might have a firewall between
    (some kind of router) or you might merely have the ICF,
    Internet Connection Firewall enabled on the server.

    In the latter case, you go into the ICF (NIC properties) and
    selectively enable the RDP protocol. If you have a firewall
    BOX in between you have to know how to run that stuff or
    get help from someone who does.

    Once we get CONNECTIVITY -- we continue with Ace's
    ideas:

    Is RD enabled?
    Does the user trying to use it have permission (i.e.,
    membership in the Remote User group)
    That's fine Ace but he is asking about RBLs which
    allow one to REFUSE connection from "known"
    spam source addresses.

    If accurate, it uses for less of a servers (and none of
    the client resources) to just STOP the transmission of
    any spam early in the SMTP conversation.

    It is NOT a sole solution but it is good first line of
    defense -- analogous to an OUTER FIREWALL in
    a network (but we are talking strictly email in this
    context.)
     
    Herb Martin, Dec 23, 2004
    #5
  6. If you are using the IP address of the server to connect and it doesn't
    work, then it ain't DNS. Get that out of the way to start with ;-)

    Windows 2003 does not, IIRC, have remote connections enabled by default.
    Control Panel -> System -> Remote -> "Allow users to connect..."

    That's my guess.

    DIF
     
    Daern's Instant Fortress, Dec 23, 2004
    #6
  7. In Herb Martin <> made a post then I commented below
    ::: As for Spam detection, there are a number of products out there,
    ::: depending
    ::
    :: That's fine Ace but he is asking about RBLs which
    :: allow one to REFUSE connection from "known"
    :: spam source addresses.

    Herb, that was why I suggested Vamsoft's ORF. It works *solely* on RBLs.
    It's only USD $198.00 for upto 4 servers. Just last month it was USD $99.00,
    but they bumped it up this month.

    It works like a charm...

    Ace
     
    Ace Fekay [MVP], Dec 24, 2004
    #7
  8. Damian F

    Herb Martin Guest

    Herb, that was why I suggested Vamsoft's ORF. It works *solely* on RBLs.
    There are plenty of reliable and free services.

    One such service is seldom enough either.
     
    Herb Martin, Dec 24, 2004
    #8
  9. Damian F

    Egil Schnack Guest

    Hello,

    you have to be a member of the buit-in-group "remote desktop users" if you
    want to connect to a w2k3 server via remote desktop.
    meryy xmass
    Egil
     
    Egil Schnack, Dec 24, 2004
    #9
  10. In Herb Martin <> made a post then I commented below
    ::: Herb, that was why I suggested Vamsoft's ORF. It works *solely* on
    ::: RBLs. It's only USD $198.00 for upto 4 servers. Just last month it
    ::: was USD $99.00, but they bumped it up this month.
    :::
    ::
    :: There are plenty of reliable and free services.
    ::
    :: One such service is seldom enough either.

    True, but this product, compared to the free services, is well worth the
    money with how easy it is to use the configuration screen, the ability to
    add mutliple block list providers, creating your own white and black lists,
    configuring how to handle spam, whether to tag it with a prefix or just
    delete it, and many more features. It's fully integrated with Exchange and
    Active Directory, for that is one of the things it does, after it intercepts
    incoming smtp sessions, it checks it's viability based on the blacklists, or
    from my own custom blacklist/whitelist entries, then verifies the recipient
    is an AD user with a mailbox, before it lets it thru.
     
    Ace Fekay [MVP], Dec 25, 2004
    #10
  11. Agreed - I've been using ORF for years.
     
    Lanwench [MVP - Exchange], Jan 2, 2005
    #11
  12. In Lanwench [MVP - Exchange]
    <> made a post then
    I commented below
    ::: Herb, that was why I suggested Vamsoft's ORF. It works *solely* on
    ::: RBLs. It's only USD $198.00 for upto 4 servers. Just last month it
    ::: was USD $99.00, but they bumped it up this month.
    :::
    ::: It works like a charm...
    ::
    :: Agreed - I've been using ORF for years.

    I just installed it at another client's site Saturday. Been trying to talk
    them into it over Symantec's version that comes with AV for Exchange. ORF is
    much easier to use and I believe has a better spam stop ratio compared to
    false positives. Symantec's wasn't doing as good as a job, and I made sure I
    had the rules and policies correct, the SCL's, etc, but it still didn't
    block as well as ORF is. So I disabled spam checking on Symantec, and let
    ORF handle it.

    Funny, another thing that bugged me is Symantec will only allow you to
    create up to 50 body reject words, and there's no real provision for
    blacklist domains you may want to add manually. ORF does allow that, and
    allows unlimited body reject word addtions.

    My vote is for ORF.

    Ace
     
    Ace Fekay [MVP], Jan 3, 2005
    #12
  13. I'll say it again:
    Symantec: Where good software goes to die. I don't like their corporate AV,
    either.
    I just hope they don't screw up Veritas.
    :)
     
    Lanwench [MVP - Exchange], Jan 3, 2005
    #13
  14. In Lanwench [MVP - Exchange]
    <> made a post then
    I commented below
    :: I'll say it again:
    :: Symantec: Where good software goes to die. I don't like their
    :: corporate AV, either.
    :: I just hope they don't screw up Veritas.
    :: :)

    LOL. Same here!

    What enterprise AV centralized solution do you like?
     
    Ace Fekay [MVP], Jan 4, 2005
    #14
  15. For desktops, I like OfficeScan - I actually use Trend products for 99% of
    my clients.
     
    Lanwench [MVP - Exchange], Jan 4, 2005
    #15
  16. In Lanwench [MVP - Exchange]
    <> made a post then
    I commented below
    ::: What enterprise AV centralized solution do you like?
    ::
    :: For desktops, I like OfficeScan - I actually use Trend products for
    :: 99% of my clients.

    Good choice. I actually use Symantec Corp for 4 of my clients. One client is
    running McAfee, and they seem to like it. I will have to look into Trend.

    :)
     
    Ace Fekay [MVP], Jan 5, 2005
    #16
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.