INTELLIGENT WORK FORUMS
FOR COMPUTER PROFESSIONALS

Log In

Come Join Us!

Are you a
Computer / IT professional?
Join Tek-Tips Forums!
  • Talk With Other Members
  • Be Notified Of Responses
    To Your Posts
  • Keyword Search
  • One-Click Access To Your
    Favorite Forums
  • Automated Signatures
    On Your Posts
  • Best Of All, It's Free!

*Tek-Tips's functionality depends on members receiving e-mail. By joining you are opting in to receive e-mail.

Posting Guidelines

Promoting, selling, recruiting, coursework and thesis posting is forbidden.

Jobs

Vlans & Cisco AP - browsing computers

Vlans & Cisco AP - browsing computers

(OP)
I have a Cisco 1138AG AP directly connected to a Fortigate 80c. I have two vlans on the AP, one for employees, one for guests. On the Fortigate I have firewall policies set for the employee vlan to access the internal LAN and the internet, and the guest vlan to only access the internet. I also have a reverse policy allowing the internal LAN to access the employee vlan. Everything is working fine, however when connected to the employee vlan, I cannot view/browse the computers of the internal LAN, and vice versa. I can ping them and manually navigate to them by IP address, but they don't show up as being "broadcasted" in the windows Network. Any way to configure this (to allow employee vlan users to browse internal LAN computers through Network)?

Thanks!

RE: Vlans & Cisco AP - browsing computers

You need to read up on WINS and Microsoft networking between subnets/networks.....

Andy

RE: Vlans & Cisco AP - browsing computers

(OP)
Thanks for the nudge. Got a WINS server going on my Samba box, configured the Fortigate to hand out its IP to employee vlan/subnet users through dhcp. Hit and miss if users can browse the entire workgroup, but at least they can resolve names.

Notable articles:
http://www.samba.org/samba/docs/using_samba/ch07.h...
http://www.samba.org/samba/docs/man/Samba-HOWTO-Co...
http://whereofwecannotspeak.wordpress.com/2007/10/...
http://www.cisco.com/en/US/products/ps6087/prod_co...

Thanks again!

RE: Vlans & Cisco AP - browsing computers

Yep - Hit and miss is probably a good desription.... In a typical wired environment you are supposed to keep at least two machines that are 'Browse Master' capable switched on permanently per subnet/broadcast domain. Clients will use the Browse Master to create the network browse list. In a wireless environment where hosts are more transient this is obviously a bit more tricky...
Personally I have disabled NetBIOS on my network so nobody ever sees a 'browse list' anymore. I have AD-published shares and printers and use mapped drives instead.

Some stuff here:

http://www.windowsitpro.com/article/tcpip/life-wit...

Good luck

Andy

Red Flag This Post

Please let us know here why this post is inappropriate. Reasons such as off-topic, duplicates, flames, illegal, vulgar, or students posting their homework.

Red Flag Submitted

Thank you for helping keep Tek-Tips Forums free from inappropriate posts.
The Tek-Tips staff will check this out and take appropriate action.

Reply To This Thread

Posting in the Tek-Tips forums is a member-only feature.

Click Here to join Tek-Tips and talk with other members!

Resources

Close Box

Join Tek-Tips® Today!

Join your peers on the Internet's largest technical computer professional community.
It's easy to join and it's free.

Here's Why Members Love Tek-Tips Forums:

Register now while it's still free!

Already a member? Close this window and log in.

Join Us             Close