0

I have a strange issue and hope someone can help me finding the cause.

Environment:

  • 2 companies (let's say Company A and Company B) with seperate IT-infrastructures.
  • Each one has its own network, own active directory, etc.
  • Company A is hosting an RDS terminalserver environment with a specific business application.
  • Company B needs to get access to this application on the terminalservers.
  • Between Company A and Company B there is a site-to-site VPN.
  • We created an active directory domain trust between them.
  • The VPN traffic is filtered with a firewall ...
  • ... We only allow the domain controllers from Company A and from Company B to talk to each other in both directions with these ports: tcp-udp/389, tcp-udp/464, tcp-udp/88, tcp-udp/53, tcp/135, tcp/3268, tcp/3269, tcp/445, tcp/49152-65535, tcp/636, tcp/139, udp/123.
  • ... The client-network from Company B is allowed to access the terminalervers from Company A with tcp/3389.
  • ... Any other communication is blocked by firewall at both companies.

Issue:

Company B clients can login into the terminalservers from Company A with their own domain user accounts from Company B. They can open and use the business application, too. So far so good.

The issue is, that the application is really slow and freezing permanently.

When I'm logging in from Company B client into the terminalservers with a domain user account from Company A, then it seems like there are no problems. The application is not freezing. I tried to figure out, what the cause of this problem is, but I don't get it. It seems like the problem only occur with users from the Company B active directory domain. Maybe some problem with the trust?

I tried to figure out, what the application is doing exactly when it freezes or responses slow. I looked into TcpView from Sysinternals and I can see, that "lsass.exe" processes are getting added into the list one after the other in the moment, when the application freezes. Maybe this could be a hint? But I don't know, how I could further troubleshoot this problem.

Any ideas?

maar
  • 487
  • 6
  • 20
Niko21
  • 49
  • 5
  • A trust either works or it doesn't. The problem is likely elsewhere. A packet capture would probably help identify the issue. – Greg Askew Jul 19 '20 at 14:41
  • I don't have administrative access at company A. What exactly would you look for with a capture? – Niko21 Jul 22 '20 at 18:04

0 Answers0