[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: IPsec tunnel and WIndows 2000 Terminal server

To: "Wen-Chi Wang" <alexw1970@yahoo.com>, <ipsec@lists.tislabs.com>
Subject: Re: IPsec tunnel and WIndows 2000 Terminal server
From: "Alexei V. Vopilov" <alx@elnet.msk.ru>
Date: Wed, 9 Aug 2000 13:58:43 +0400
References: <20000809020704.22366.qmail@web906.mail.yahoo.com>
Sender: owner-ipsec@lists.tislabs.com

I think this is not an issue of IPsec.
Rather, this is obviously the Windows 2000 licensing question.
Windows 2000 once installed employs following algorithm (or a like)
 to accept clients on it's terminal services:
- Sets the start of 90-days evaluation period
- When a client is requesting connection on  terminal service,
  the attempt is made to locate Terminal Service License Server on
  the network
- If failed, then just issue dummy certificate and accept connection.
- Once 90 days is over, server rejects any clients under above case.

The License Server can be found as additional Windows 2000 component
Once installed it uses similar approach but with respect of real license that
must
be requested from Microsoft within 90 days once License Server is installed.
While this (additional) evaluation period is not expired, the license server
issues
temporary certificates (licenses) upon request, but sets the expiration date of
those
according to happened evaluation period.

After this, second 90-days, period is over your got to activate the license
server by
requesting a license from Microsoft the way similar to one used by Sun
Microsystems
for its products.
--Alexei


----- Original Message -----
From: "Wen-Chi Wang" <alexw1970@yahoo.com>
To: <ipsec@lists.tislabs.com>
Sent: Wednesday, August 09, 2000 6:07 AM
Subject: IPsec tunnel and WIndows 2000 Terminal server


> Hi all:
>  My client got an interesting IPSec and WIndows 2000
> terminal problem. Their client could connect to
> windows 2000 terminal server through LAN connection
> and PPTP tunnel. While connecting to the WIndows 2000
> terminal server through IPSec tunnel, the client get
> disconnected from server and server has event log
> saying terminal server failed to issue a license to
> client.
> I am not pretty sure what IPSec implementation my
> client has in this case because I am not in the
> security group in this project.
> I just wonder if anyone in IPSec group ever heard
> about any thing about connecting to Windows 2000
> terminal server through IPSec tunnel. Any successful
> or failed story?
> By my rough guess, routing and IPsec policy did matter
> in this case. Again, I did not have the chance to
> check client's gateway to gateway IPSec configuration.
> So I end up with bring this topic with rough
> description and hope get reply from other about their
> deployment of IPsec and any kind of compatibility with
> windows 2000 terminal server ( running windows 2000
> advanced server in application terminal server mode.)
>
>
> Wen-Chi (Alex) Wang
> Lucent Technologies, Networkcare NPS
>
>
> __________________________________________________
> Do You Yahoo!?
> Kick off your party with Yahoo! Invites.
> http://invites.yahoo.com/
>
>

References:

IPsec tunnel and WIndows 2000 Terminal server

From: Wen-Chi Wang <alexw1970@yahoo.com>

Prev by Date: RE: Heartbeats Straw Poll
Next by Date: Re: Heartbeats Straw Poll
Prev by thread: IPsec tunnel and WIndows 2000 Terminal server
Next by thread: IPsec FreesWan and win2k workstation
Index(es):
- Main
- Thread