VPN Tunnel to Domain?

[Amanajaku]

I am new to this, so if someone could link to a good explaination of what I am trying to do, or could explain it, would be grateful

We have two routers, that have an active PPTP tunnel. However, computers on site B cannot login to the domain on site A.

(Site B) *router* ---- internet ---- *router* (site A)PDC

Now, the clients on site B are running Windows 2000, and the DNS server they are configured to use, is the DNS server bring hosted on site A.

There is also a WINS server that is being hosted on Site A that the clients at Site B are configured to access.


Why can my clients from site B not logon to the PDC at Site A? Shouldnt using the same DNS be enough to resolve the names? If DNS isnt enough, shouldnt WINS?

Can someone give me a solution that doesnt involve using an LMHOSTS file? It would be a pain to propagate that to all machines involved.

Thanks!!

Amana

 

[Amanajaku]

Btw - These are Netopia 9100r series routers we are using to establish the connection.

Is it possible to browse the network using the hardware we have, from a remote location? I dont reconfiguring if I know what I am looking for..

Thanks again,

amana

 

[JamesBoag]

1. Amanajaku, please ensure that the users@siteB have a valid account on the domain@siteA, and that they have Dial in permission.

2. Next, please ensure that the Domain Controller@siteA has been configured as a VPN server.

3. Next, ensure that the clients@siteB can manually establish a vpn connection to siteA.

4. Next, click on the options button at the security prompt(LOGON WINDOW) on the 2K clients@siteB and tick "LOGON USING DIAL-UP NETWORKING".

5. Then select the VPN dial-up connection that you made earlier(STEP 3) as the connection to use.

Bear in mind that there are no routers that support more than one pass-through session from the same site. IE, only one client at a time at siteB will be able to connect to siteA.

If you require more than one connection at a time from siteB, then you may have to purchase routers that create their own tunnels. This is what I am trying to set up now and it's HELL ON WHEELS!!!

Good luck

 

[JamesBoag]

Amanajaku, I forgot something else:

You should open up port 1723 @siteA firewall and point it to the server.

 

[WannaFly]

I am in no way an expert, in fact i am just tryingto set up a VPN for myself and am thinking of using the Netopia r9100 router also. James, i wanted to ask, why can you only have 1 connection FROM B? If its the same router, the netopia can handle multiple connections, cant it? I am probably wrong, i am still trying to figure out the authentication used with VPNing.

 

[mrmonday]

Quick summary:

Based on your diagram each site is already active with PPTP running between the routers. If this is the case then the server itself wouldn't necessarily need to be set up as a vpn server (I wouldn't think). Also, would the router-router connection allow for mutliple users as opposed to a single user dialing out. Are the clients are properly configured with login accounts and port 1723 open?

Do you have MS vpn protocol set up on the clients? I don't use VPN but have a MS VPN adapter configured on my PC.

Are you running IP protocol? What other protocols?

Can you ping the server or any other node within site A? Do you have any HP printers networked on the A side? If so, open IE and type the ip addr of a printer to see if you can access the administrative page for the printer (just to test network connectivity).

 

[Amanajaku]

Thanks for the help guys, but I got it figured out.


The router has a feature called "NetBios Proxy"

I enabled this feature on both ends of the router, which allowed for the netbios names to be forwarded between routers/networks and allowed me to contact and login to the domain.

Thanks guys for the response!