I have a successful router to router (Cisco) IPSEC VPN working, DHCP works at remote branch, DNS and WINs are both working (Wins clients at remote branch are registered on WINs server, and in DNS server).
I can ping across the VPN between internal networks successfully. When I try to login to the domain however, I get the login prompt (so I know it's communicating to the PDC across the VPN) and after submitting a valid username and password, it times out with a message 'specified name is no longer available'.
If I enter the DNS domain name after authenication, then it times out with 'semaphore timeout has expired' (or something similar).
The same laptop successfully logged into the domain at the head office, and it can also login when running the Cisco VPN client when connected to the internet, BUT when connected to the internal LAN at the remote branch, then logging into the domain times out after entering username/pwd at login prompt.
It's not router access lists or fw inspect names, since removing these makes no difference. It's probably some quirky name resolution thing or some other wonderfully weird Microsoft parameter config setting? Any ideas or suggestions most welcome!
I can ping across the VPN between internal networks successfully. When I try to login to the domain however, I get the login prompt (so I know it's communicating to the PDC across the VPN) and after submitting a valid username and password, it times out with a message 'specified name is no longer available'.
If I enter the DNS domain name after authenication, then it times out with 'semaphore timeout has expired' (or something similar).
The same laptop successfully logged into the domain at the head office, and it can also login when running the Cisco VPN client when connected to the internet, BUT when connected to the internal LAN at the remote branch, then logging into the domain times out after entering username/pwd at login prompt.
It's not router access lists or fw inspect names, since removing these makes no difference. It's probably some quirky name resolution thing or some other wonderfully weird Microsoft parameter config setting? Any ideas or suggestions most welcome!