Mark Minasi's Tech Forum
Register Calendar Latest Topics Chat
 
 
 


Reply
  Author   Comment  
gpoguy

Avatar / Picture

New Friend (or an Old Friend who Built a New Account)
Registered:
Posts: 50
Reply with quote  #1 
I'm not entirely sure where this topic belongs, so here it is! I am trying to figure out why I get a ton of RDP disconnects whenever I connect to my home network over VPN. It doesn't seem to matter which OS version I'm RDPing to or RDPing from (though Win10 is markedly worse). The telltale signs are that it's worse over slow links (e.g. cell modem) to the point that the session never quite connects. It used to work, but no longer. I'm not sure where to look to determine if the issue could be on my ISP, or in my VPN router. Any thoughts here?
__________________
Darren Mar-Elia
MS-Group Policy MVP
Founder--SDM Software (https://sdmsoftware.com)
Need Group Policy Training? Check out my Group Policy Fundamentals course: http://pluralsight.com/courses/group-policy-fundamentals
0
donoli

Senior Member
Registered:
Posts: 522
Reply with quote  #2 
The ISP may consider your VPN a source of spam & they drop the connection.  Another possibility is DynDNS, if that's what you are using on your home network.  I'm not sure what you mean by a VPN router. 
0
gpoguy

Avatar / Picture

New Friend (or an Old Friend who Built a New Account)
Registered:
Posts: 50
Reply with quote  #3 
Thanks for that. The curious thing is that it never used to do this so something has changed. I did notice that when I updated to Windows 10 on my laptop, it got worse. As in, Windows 10 as the client is a problem. But it also happens now on Win7 clients. Anyway, what about Dynamic DNS are you suggesting to look at? By VPN router I simply meant the firewall/router/VPN termination point device that I have.
__________________
Darren Mar-Elia
MS-Group Policy MVP
Founder--SDM Software (https://sdmsoftware.com)
Need Group Policy Training? Check out my Group Policy Fundamentals course: http://pluralsight.com/courses/group-policy-fundamentals
0
jsclmedave

Administrator
Registered:
Posts: 446
Reply with quote  #4 
Quote:
Originally Posted by gpoguy
Thanks for that. The curious thing is that it never used to do this so something has changed. I did notice that when I updated to Windows 10 on my laptop, it got worse. As in, Windows 10 as the client is a problem. But it also happens now on Win7 clients. Anyway, what about Dynamic DNS are you suggesting to look at? By VPN router I simply meant the firewall/router/VPN termination point device that I have.


For what its worth Darren, when we had Verizon FIOS I did not have a single drop or issue with my last two companies VPN connections.

When they migrated to Frontier it became every 35 mins.  Sometimes it was so bad I had to re-boot and even reset the IPstack.

When using my AT&T phone as a hotspot it was better but that too became an issue.

We are now on Spectrum and RDP is a PITA over our current companies VPN.

This is over WIN 7...

Have you changed ISP lately or been involved in a merger?

I'm thinking its some of ISP & my current company making changes that are causing issues but its getting to where we cannot hardly work remote anymore...

__________________
Tim Bolton @jsclmedave
Email: [string](0..20|%{[char][int](32+('527377347976847978324785847679797514357977').substring(($_*2),2))}) -replace ' '  

New to the forum? Please Read this
0
donoli

Senior Member
Registered:
Posts: 522
Reply with quote  #5 
I asked about DynDNS with lease renewals in mind.  Chances are that there wouldn't be that many that would coincide with the number of drops.  I thought that I would mention it anyway.
0
wobble_wobble

Avatar / Picture

Associate Troublemaker Apprentice
Registered:
Posts: 825
Reply with quote  #6 
Go back to basics.
Ping the server/end point when connected over VPN. Start increasing the packet size -l and see what you can get through.
Then connect and see what happens.
You may need to adjust the ping packet size down.
You now have 2 packet sizes, no RDP and RDP
when connected run a continuous ping. See does it drop when your RDP does.
If not, when it drops try the 2 ping sizes while trying to connect

Is the VPN to a firewall or a server?

__________________
Have you tried turning it off and walking away? The next person can fix it!

New to the forum? Read this
0
Pieter

Avatar / Picture

Senior Member
Registered:
Posts: 158
Reply with quote  #7 
I understand that this is probably not an option for you, but I'm a huge fan of RDG. Remote Desktop Gateway, a technique where the RDP sessie (TCP/3389) is encapsulated in a HTTPS session (TCP/443).
Firewall friendly (works from hotel, VPN often doesn't), very robust.
You need a RDG server though : an application on IIS on Windows with a https certificate that must be trusted on the client, can be a self signed certificate.


__________________
Pieter Demeulemeester
0
gpoguy

Avatar / Picture

New Friend (or an Old Friend who Built a New Account)
Registered:
Posts: 50
Reply with quote  #8 
Thanks Joe and Pieter. I have done some basic ping tests while connecting to the RDP endpoint. I haven't adjusted packet sizes but doing a continuous ping while connected didn't seem to affect it. This is a SonicWALL firewall btw. The curious part is that this worked fine for literally, years. So, its not clear to me what changed. I can only imagine that my ISP is doing something stupid to me, but I'm still working on testing taking the VPN out of the loop temporarily to see if it still happens, to narrow down whether it's the firewall or the connection.
__________________
Darren Mar-Elia
MS-Group Policy MVP
Founder--SDM Software (https://sdmsoftware.com)
Need Group Policy Training? Check out my Group Policy Fundamentals course: http://pluralsight.com/courses/group-policy-fundamentals
0
jsclmedave

Administrator
Registered:
Posts: 446
Reply with quote  #9 
Quote:
Originally Posted by gpoguy
Thanks Joe and Pieter. I have done some basic ping tests while connecting to the RDP endpoint. I haven't adjusted packet sizes but doing a continuous ping while connected didn't seem to affect it. This is a SonicWALL firewall btw. The curious part is that this worked fine for literally, years. So, its not clear to me what changed. I can only imagine that my ISP is doing something stupid to me, but I'm still working on testing taking the VPN out of the loop temporarily to see if it still happens, to narrow down whether it's the firewall or the connection.


Could be a mix Darren.  I was forced to get a work iPhone so have been using it at home as a Hot Spot for work.  My dropped VPN Sessions are not down to once a day.

Prior on Spectrum it was about once an hour...

When we have FIOS - and I mean before they sold out to Frontier THE WORST EVER! - I never dropped...  Once Frontier took over it was so bad I gave up and used my personal phone as a hot spot.




__________________
Tim Bolton @jsclmedave
Email: [string](0..20|%{[char][int](32+('527377347976847978324785847679797514357977').substring(($_*2),2))}) -replace ' '  

New to the forum? Please Read this
0
Wobble_Wibble

Avatar / Picture

New Friend (or an Old Friend who Built a New Account)
Registered:
Posts: 45
Reply with quote  #10 
Darren

Your potentially seen as a band width threat hence them dropping your session. The ping can go to an internal LAN IP and your WAN IP.

Next query...have they upgraded you to a different connection or possibly replaced the router?
Have you checked for firmware for both the router and the Firewall?

__________________
Press any key....
Yes, any key....
OK, try the space bar.
0
Previous Topic | Next Topic
Print
Reply

Quick Navigation:

Easily create a Forum Website with Website Toolbox.