Re: VPN Problem?

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

From: Bill Grant (not.available_at_online)
Date: 03/31/04 

Date: Wed, 31 Mar 2004 10:57:34 +1000

       If the remote users are domain members, they will probably be able to
get a browse list of the LAN machines if you are running WINS on the LAN.

    When the remote needs a browse list, it will send a name request for the
special Netbios name <domainname 1b> , which is the Domain Master Browser.
WINS should reply with the IP address for the DMB, and the client gets the
browse list (using the IP address). If you are running WINS but this isn't
happening, you will need to monitor the traffic on the VPN link to see where
it fails.

"JMTS" <someone@somewhere.com> wrote in message
news:O2WaicoFEHA.684@tk2msftngp13.phx.gbl...
> Hello Bill
>
> Hum..
>
> You said that the clients don't know how to find the Domain Master
Browser??
> But joined the remote users to my internal domain via VPN connection? And
it
> worked fine they were add successfully.
>
> About the problem that they couldn't enter on the domain browser was that
> they have FW enable on their internet connection (not in vpn connection),
I
> disable the FW on internet connection and the message error stops, but
they
> only can see their machine beyond the domain they can't see the machines
on
> my internal domain, but they still can ping machines by name or ip
address.
>
>
>
> I've a question for you if you don't mind
>
> I need to setup a remote site with the same configuration, but this site
> will be the child domain of the existent domain, and I need that everyone
> sees everyone.
>
> Now according with you I need at least to have DNS registrations on both
> sites of domain controllers??
>
> Can I do this without Wins? You I really don't want (if possible) to have
> wins servers on any site...
>
>
>
> Thanks again for your time
>
> Regards
>
>
>
> "Bill Grant" <not.available@online> wrote in message
> news:Oywe$7fFEHA.3324@TK2MSFTNGP09.phx.gbl...
> > I don't see anything strange about that. In fact, it is pretty much
> what
> > I would expect to happen. Browsing and name resolution are related, but
> they
> > are not really the same thing!
> >
> > The browser service works by using LAN broadcasts. RAS/VPN
connections
> > do not carry LAN broadcasts, so remote clients will not show up in the
LAN
> > browse list. And you will not be able to contact remotes by name from
the
> > LAN unless they register in either DNS or WINS. Their names cannot be
> > resolved by broadcast.
> >
> > The remote clients could possibly see the LAN browse list if they
were
> > logged into the domain (depending on WINS). But if they are simply
> > connecting to a standalone server, they will not know how to find the
> Domain
> > Master Browser.
> >
> >
> > "JMTS" <someone@somewhere.com> wrote in message
> > news:O5cH9SfFEHA.2600@TK2MSFTNGP12.phx.gbl...
> > > Hello
> > > I've set up several remote vpn clients to connect to my rras server
that
> > is
> > > a ISA server (Stanalone server not member of internal domain-for
> security
> > > reasons), they connect with no problem to the network they login using
> > > dialup (VPN connection) then they're able to access to the network
> drives
> > > (files,etc) as network printers.
> > > The problem:
> > > When they try to access to network browser, they click on the domain
and
> > > they receive the following message: "Domain is not accessible. You
might
> > not
> > > have permission to use this network resource. Contact the
Administrator
> of
> > > this server to find out if you have access permissions- The list of
> > servers
> > > for this workgroup is not available"
> > > 1 - Isn't a workgroup, is a domain
> > > 2 - If the remote users type on their networkbrowser \\computerdomain
> they
> > > have access to all computers with no problem!!!.. They also can ping
> every
> > > computer in internal domain by name or ip_adress
> > > 3 - Sometimes I need to access to the remote users and I only can do
> that
> > if
> > > I type \\ip_adress if I try to type \\computername doesn't work...
> > > 4 - On internal domain browser I can't see the remote vpn machines...
> > > strange ha?? maybe not!!!Maybe you could help me out whit this.
> > >
> > > Thanks for your time
> > > Regards
> > >
> > >
> > >
> >
> >
>
>

Relevant Pages

  • Re: 1 way remote desktop
    ... I am using the local ip of the desktop as seen on my lan ... laptop = 192.168.0.3 ... also remote access connection mgr is up. ...
    (microsoft.public.windowsxp.work_remotely)
  • Re: DSL Upgrade
    ... Discussions so far appear to be centered around hubs but since true hubs are just a means of connecting various machines on a LAN with no nat abilities they will not work in this case without the public id's mentioned. ... A router, Linksys BEFSR11, 1 port in and 1 out to your cable/dsl modem, or BEFSR41 with 4 ports, for your LAN computers, and 1 port out to your cable/dsl modem which will allow connection to 4 machines. ... If you connect 1 port for a LAN machine to a larger switch or hub more machines can be handled. ...
    (microsoft.public.win2000.networking)
  • Re: Remote Desktop Connection Problem
    ... > I get the following connection problem with RDC. ... > "The client could not connect to the remote computer. ... > Both machines are running XP Pro. ... > and sit behind routers. ...
    (microsoft.public.windowsxp.work_remotely)
  • Re: Please help me, please help
    ... "Don Wilwol" wrote: ... Do you have any external connection that are working? ... from outside LAN. ... You can also add other users to the remote desktop group. ...
    (microsoft.public.windows.terminal_services)
  • No audio on LAN NetMeeting call
    ... I have a wireless LAN with 3 PCs, ... NetMeeting v3.01 to be able to speak between the 2 Win2000 machines on ... No internet calls are required at all. ... we are getting our internet connection). ...
    (microsoft.public.internet.netmeeting)