<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<meta name="Generator" content="Microsoft Word 15 (filtered medium)">
<style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:purple;
text-decoration:underline;}
p.msonormal0, li.msonormal0, div.msonormal0
{mso-style-name:msonormal;
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
span.m2897013758619368255gmail-hoenzb
{mso-style-name:m_2897013758619368255gmail-hoenzb;}
span.EmailStyle19
{mso-style-type:personal-reply;
font-family:"Calibri",sans-serif;
color:windowtext;}
.MsoChpDefault
{mso-style-type:export-only;
font-family:"Calibri",sans-serif;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang="EN-US" link="blue" vlink="purple">
<div class="WordSection1">
<p class="MsoNormal">One other thing,<br>
Are you running Windows 10 Pro on the target box?<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal"><b>From:</b> vpn-help [mailto:vpn-help-bounces@lists.shrew.net]
<b>On Behalf Of </b>Yury Kolos<br>
<b>Sent:</b> Monday, June 18, 2018 4:01 AM<br>
<b>To:</b> Larry Moore <lmoore@starwon.com.au><br>
<b>Cc:</b> vpn-help@lists.shrew.net<br>
<b>Subject:</b> Re: [vpn-help] Win10 RemoteDesktop App cannot connect through ShrewVPN<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<div>
<div>
<p class="MsoNormal">Hello Larry,<o:p></o:p></p>
</div>
<div>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
<blockquote style="border:none;border-left:solid #CCCCCC 1.0pt;padding:0in 0in 0in 6.0pt;margin-left:4.8pt;margin-right:0in">
<div>
<p class="MsoNormal">Note the source IP of 192.168.71.3 above. I am assuming this is the IP address of your LAN and I suspect is where your problem begins <o:p></o:p></p>
</div>
</blockquote>
<div>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
<div>
<p class="MsoNormal">Yes, you are right. 192.168.71.3 it's LAN IP of my PC. <a href="http://172.17.19.0/24" target="_blank">
172.17.19.0/24</a> - it's VPN-subnet. <o:p></o:p></p>
</div>
<div>
<p class="MsoNormal">I don't understand why traffic not going through VPN subnet when I use RemoteDesktop App, but does so in any other application including RDP-client.<o:p></o:p></p>
</div>
<div>
<p class="MsoNormal">Thank you very much for your help. I've understood the problem in RemoteDesktopApp.<o:p></o:p></p>
</div>
<div>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
<div>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
</div>
<div>
<p class="MsoNormal"><br clear="all">
<o:p></o:p></p>
<div>
<div>
<div>
<div>
<div>
<div>
<div>
<div>
<div>
<p class="MsoNormal">--<br>
Best regards, Yury<o:p></o:p></p>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
<p class="MsoNormal"><o:p> </o:p></p>
<div>
<p class="MsoNormal">2018-06-18 2:19 GMT+03:00 Larry Moore <<a href="mailto:lmoore@starwon.com.au" target="_blank">lmoore@starwon.com.au</a>>:<o:p></o:p></p>
<blockquote style="border:none;border-left:solid #CCCCCC 1.0pt;padding:0in 0in 0in 6.0pt;margin-left:4.8pt;margin-right:0in">
<div>
<div>
<p class="MsoNormal">Hi Yury,<br>
<br>
On 17/06/2018 5:08 PM, Yury Kolos wrote:<o:p></o:p></p>
</div>
<blockquote style="margin-top:5.0pt;margin-bottom:5.0pt">
<div>
<div>
<p class="MsoNormal">Thank you for your response Larry.<o:p></o:p></p>
</div>
<div>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
<blockquote style="border:none;border-left:solid #CCCCCC 1.0pt;padding:0in 0in 0in 6.0pt;margin-left:4.8pt;margin-right:0in">
<div>
<p class="MsoNormal">It would seem your VPN tunnel is working just not the application.
<o:p></o:p></p>
</div>
</blockquote>
<div>
<p class="MsoNormal">App not working only through ShrewVPN.<o:p></o:p></p>
</div>
<div>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
<div>
<blockquote style="border:none;border-left:solid #CCCCCC 1.0pt;padding:0in 0in 0in 6.0pt;margin-left:4.8pt;margin-right:0in">
<p class="MsoNormal">I expect you will see some packets relating to connection establishment. If so, could your PIX be performing deep packet inspection and blocking the connection!?<o:p></o:p></p>
</blockquote>
</div>
<div>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
<div>
<p class="MsoNormal">When I connectin RDP-client I see established connection in netstat utility:<o:p></o:p></p>
</div>
<blockquote style="border:none;border-left:solid #CCCCCC 1.0pt;padding:0in 0in 0in 6.0pt;margin-left:4.8pt;margin-right:0in">
<div>
<p class="MsoNormal">netstat -na | findstr 111.250<br>
TCP <a href="http://172.17.19.150:49942" target="_blank">172.17.19.150:49942</a>
<a href="http://192.168.111.250:3389" target="_blank">192.168.111.250:3389</a> ESTABLISHED<o:p></o:p></p>
</div>
</blockquote>
<div>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
<p class="MsoNormal"><o:p> </o:p></p>
<div>
<p class="MsoNormal">But when I try to use Remote Desktop App I see only Syn_Sent in netstat:<o:p></o:p></p>
</div>
<blockquote style="border:none;border-left:solid #CCCCCC 1.0pt;padding:0in 0in 0in 6.0pt;margin-left:4.8pt;margin-right:0in">
<div>
<p class="MsoNormal">netstat -na | findstr 111.250<br>
TCP <a href="http://192.168.71.3:49929" target="_blank">192.168.71.3:49929</a>
<a href="http://192.168.111.250:3389" target="_blank">192.168.111.250:3389</a> SYN_SENT<o:p></o:p></p>
</div>
</blockquote>
<div>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
</div>
</blockquote>
<p class="MsoNormal"><br>
Note the source IP of 192.168.71.3 above. I am assuming this is the IP address of your LAN and I suspect is where your problem begins.<br>
<br>
<br>
<o:p></o:p></p>
<blockquote style="margin-top:5.0pt;margin-bottom:5.0pt">
<div>
<p class="MsoNormal"><o:p> </o:p></p>
<div>
<p class="MsoNormal">Packet trace in attachment. Could you see?<o:p></o:p></p>
</div>
</div>
<div>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
</blockquote>
<p class="MsoNormal"><br>
Looking at your packet capture I can see three RDP sessions going through the Shrew VPN, I am also assuming these connections were made after the above 'netstat' command was issued.<br>
<br>
I expect if you perform a packet capture at the gateway for the subnet <a href="http://192.168.71.0/24" target="_blank">
192.168.71.0/24</a> and you look for packets destined for host 192.168.111.250, you will see the SYN requests arrive. If so, you will need to determine why your Remote Desktop App is using your LAN's default Gateway instead of the routes set up by Shrew VPN.<br>
<br>
Regards,<br>
<br>
Larry.<o:p></o:p></p>
</div>
<p class="MsoNormal" style="margin-bottom:12.0pt"><br>
_______________________________________________<br>
vpn-help mailing list<br>
<a href="mailto:vpn-help@lists.shrew.net">vpn-help@lists.shrew.net</a><br>
<a href="https://lists.shrew.net/mailman/listinfo/vpn-help" target="_blank">https://lists.shrew.net/mailman/listinfo/vpn-help</a><o:p></o:p></p>
</blockquote>
</div>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
</div>
</body>
</html>