Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

PIX515E VPN NT DOMAIN

Status
Not open for further replies.
AldoE

AldoE

IS-IT--Management
Oct 9, 2002
3
US
Need help setting up a VPN with a Cisco PIX 515E. We've successfully been able to connect to the inside of our network but but we can't authenticate on the NT Domain.

Our Inside network is 10.1.1.0/24
Our VPN ip-pool is 10.1.2.0/24
Gateway is 10.1.1.1
Domain Server 10.1.1.5 NT4.0 Server
Cisco VPN Client 3.6 on Windows 98 (Remote Clients)


When we're connected (vpn) to our network we can ping the server 10.1.1.5 but we cannot see other computers or logon to the domain.

Any help would be greatly appreciated

PIX 515E 6.2.2
 
Sort by date Sort by votes
Now, I dont have any expience with the PIX or doing this with Cisco, but we just accomplished this feat with 2k workstations and a 2k server, over Netopia routers.

A few things to throw out there to you

WINS.. Do you have it installed?
DNS is needed, but in this senario, I have never got it to resolve domain names over a VPN tunnel.

You need some sort of netbios resolution. For us there was an option called "netBios proxy" and that worked for us.

LMHOSTS file should do it just fine. Have you looked for anything on Cisco's site?

Amana
 
Upvote 0 Downvote
We just installed wins server on the Primary Domain Controller. We do not have DNS in our LAN.

About the LMHOSTS how would that entry look like? Do i have to specify the domain name or the server name?
 
Upvote 0 Downvote
I'm not any expert but I've seen issues with PIX and VPN, the problem was with the Consentrator on the server & client side that needed updating. The problem I saw this with was the user was able to get onto the network but couldn't send over 200K for his e-mail.

This maybe something to look into
 
Upvote 0 Downvote
HI.

LMHOSTS should do the trick.

Simply look at the file:
C:\WINDOWS\LMHOSTS.SAM
on your W98 workstation and you'll get the idea.

You'll need to put the customized LMHOSTS file (with no extension!) in the WINDOWS folder of remote VPN clients.
Computers on the phisical LAN does not need it.

Bye
Yizhar Hurwitz
 
Upvote 0 Downvote
I agree with Yizhar, you need to put the PDC, i.e the WINS server, at least into a lmhosts file (with no extension) into the proper folder of all VPN users ( win98 is c:\windows , 2k and XP are windows(or winNT)\system32\drivers\etc).
Go here for more info on LMHOSTS files

this should do the trick, but if not, be careful in posting your config, of course do not post sensitive info. But the config might be of use to us if there is a problem with it. Really though you should call the TAC about this, they can resolve it much faster than most people here, not that most people hear are not good, but that is the Cisco TAC agents job and all.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

teknance
  • Locked
  • Question
Discovering Portugal: Uncover Hidden Destinations and VPN Solutions
Replies
5
Views
445
GlobeTrekkerGal
GlobeTrekkerGal
sarahz2
  • Locked
  • Question
Best vpn safe and fast
Replies
4
Views
333
GlobeTrekkerGal
GlobeTrekkerGal
MP2023
  • Locked
  • Question
How to Create an site to site VPN
Replies
1
Views
274
sircles
sircles
ramblingrebel
  • Locked
  • Question
Built-in Windows 10 VPN
Replies
1
Views
238
Joon Smith
Joon Smith
LearningNetworking
  • Locked
  • Question
Linking Hosts on the same subnet via VPN
Replies
0
Views
314
LearningNetworking
LearningNetworking

Part and Inventory Search

Sponsor

Back
Top