I am having issues trying to connect to a Virtual Machine that is on an internal network on a 2012 Hyper-V host. The host is configured in routing and remote access to route to the network and I can ping OK. The connection fails with a message saying there was a problem with Data encryption. On the machine that I am trying to connect to there is an error states "he error I recieve is "The Kerberos client received a KRB_AP_ERR_MODIFIED error from the server server$. The target name used was ldap/server.name. This indicates that the target server failed to decrypt the ticket provided by the client."
I thought that this may be some issue with duplicate SPN or SID, so I have tested creating a VM as a fresh install and not even joining to the domain. And I am still unable to connect.
If I change the network to the same network interface as the host then I can connect OK, I can also connect to the VM on the internal network directly from the HOST, so this appears to be an issue with routing.