Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations TouchToneTommy on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Add computer to domain over Site-to-Site tunnel

Status
Not open for further replies.
adnorton

adnorton

Technical User
May 19, 2004
76
US
I have a site to Site tunnel between a PIX 506E and a PIX 515E that goes between two locations. I can see each side via ip and can connect to each side with PCAnywhere etc... The problem I am having is attaching computers or servers to the domain from the remote location. I keep getting RPC is Unavailable. I am running version 7.0.(1)5 here on the PIX 515E. Does anyone have any ideas on how I can allow or pass traffic to allow these machines to connect and/or replicate?

Any and all help is much appreciated.

Thanks
Aaron

 
Sort by date Sort by votes
Can you post a config please? Remove/replace any IP address as you see fit.

Kind Regards

Dave
 
Upvote 0 Downvote
access-list outside_access_in extended permit icmp any any
access-list outside_access_in extended permit Cp any host X.X.X.X7 eq smtp
access-list outside_access_in extended permit Cp any host X.X.X.X eq smtp
access-list outside_access_in extended permit udp any host X.X.X.X51 eq 2233
access-list outside_access_in extended permit udp object-group BOS host X.X.X.X51 range 10025 10027
access-list outside_access_in extended permit icmp host BOSwubos any
access-list outside_access_in extended permit udp host BOSwubos any eq snmp
access-list outside_access_in extended permit udp host ThomsonOne X.X.X.X 255.255.255.0 eq 4900
access-list outside_access_in extended permit Cp object-group BOS any object-group BOS-mgmt-Cp
access-list outside_access_in extended permit udp object-group BOS any object-group BOS-mgmt-udp
access-list outside_access_in extended permit Cp object-group BOS any eq pcanywhere-data
access-list outside_access_in extended permit Cp ecsbos 255.255.254.0 host X.X.X.X0 eq pcanywhere-data
access-list outside_access_in extended permit udp ecsbos 255.255.254.0 host X.X.X.X0 eq pcanywhere-status
access-list outside_access_in extended permit Cp ecsbos 255.255.254.0 host X.X.X.X1 eq pcanywhere-data
access-list outside_access_in extended permit udp ecsbos 255.255.254.0 host X.X.X.X1 eq pcanywhere-status
access-list outside_access_in extended permit Cp object-group C host X.X.X.X eq ssh
access-list outside_access_in extended permit Cp Net-SendIO 255.255.255.224 host X.X.X.X4 object-group SendIO
access-list outside_access_in extended permit Cp host BLPMDSGW host X.X.X.X eq 6464
access-list outside_access_in extended permit udp host ntp2. host X.X.X.X4 eq ntp
access-list outside_access_in extended permit udp Net-SendIO 255.255.255.224 host X.X.X.X4 object-group SendIO-UDP
access-list outside_access_in extended permit Cp BOS3 255.255.255.0 host X.X.X.X30 eq pop3
access-list outside_access_in extended permit Cp host advisorware host X.X.X.X0 eq pcanywhere-data
access-list outside_access_in extended permit udp host advisorware host X.X.X.X0 eq pcanywhere-status
access-list outside_access_in extended permit ip BOS2wells1 255.255.255.0 any
access-list outside_access_in extended deny ip any any
access-list dmz_access_in extended permit ip host smtp any
access-list dmz_access_in extended permit ip host C_dmz any
access-list dmz_access_in extended permit ip host p2prouter any
access-list dmz_access_in extended permit ip ChomeX.X.X.Xany
access-list dmz_access_in extended permit ip ChomeX.X.X.Xany
access-list dmz_access_in extended permit ip ChomeX.X.X.Xany
access-list dmz_access_in extended permit ip ChomecoX.X.X.Xany
access-list dmz_access_in extended permit icmp any any
access-list dmz_access_in extended permit Cp host C_dmz host C_LAN eq ssh
access-list dmz_access_in extended permit Cp host C_dmz host C_LAN eq ftp
access-list dmz_access_in extended permit Cp host SendIO host MAIL eq smtp
access-list dmz_access_in extended permit Cp host SendIO host BOS2DC2 eq 3268
access-list dmz_access_in extended permit udp host SendIO host BOS2DC2 eq 3268
access-list dmz_access_in extended permit Cp host SendIO host BOS2DC2 eq domain
access-list dmz_access_in extended permit udp host SendIO host BOS2DC2 eq domain
access-list dmz_access_in extended permit ip host SendIO any
access-list dmz_access_in extended permit ip host smtp_new any
access-list dmz_access_in extended deny ip any any
access-list inside_nat0_outbound extended permit ip X.X.X.X255.255.255.0 BOS2wells1 255.255.255.0
access-list outside_cryptomap_20 extended permit ip X.X.X.X255.255.255.0 BOS2wells1 255.255.255.0
access-list inside_access_in extended permit ip X.X.X.X255.255.255.0 any
access-list inside_access_in extended permit ip X.X.X.X255.255.255.0 any
static (inside,dmz) X.X.X.XX.X.X.Xnetmask 255.255.255.0
static (inside,outside) X.X.X.X BOS2FS netmaskX.X.X.X
static (inside,outside) X.X.X.X BOS2SQL netmaskX.X.X.X
static (inside,outside) X.X.X.X MAIL netmaskX.X.X.X
static (dmz,outside) X.X.X.X7 smtp netmaskX.X.X.X
static (inside,outside) X.X.X.X50 gigeswiCh1 netmaskX.X.X.X
static (inside,outside) X.X.X.X47 mvswiCh netmaskX.X.X.X
static (inside,outside) X.X.X.X51 netstructurevpn netmaskX.X.X.X
static (dmz,outside) X.X.X.X C_dmz netmaskX.X.X.X
static (inside,outside) X.X.X.X45 BOS2wells netmaskX.X.X.X
static (inside,outside) X.X.X.X30 Audix netmaskX.X.X.X
static (inside,outside) X.X.X.X31 definity-clan1 netmaskX.X.X.X
static (inside,outside) X.X.X.X32 definity-clan2 netmaskX.X.X.X
static (inside,outside) X.X.X.X33 definity-medpro netmaskX.X.X.X
static (dmz,outside) X.X.X.X46 p2prouter netmaskX.X.X.X
static (inside,dmz) X.X.X.XX.X.X.Xnetmask 255.255.255.0
static (inside,outside) X.X.X.X44 adtran netmaskX.X.X.X
static (inside,outside) X.X.X.X0 Cserver netmaskX.X.X.X
static (inside,outside) C_LAN C_LAN netmaskX.X.X.X
static (inside,outside) X.X.X.X BES netmaskX.X.X.X
static (dmz,outside) X.X.X.X4 SendIO netmaskX.X.X.X
static (dmz,outside) X.X.X.X smtp_new netmaskX.X.X.X
static (inside,outside) X.X.X.X BOS2DC2 netmaskX.X.X.X
static (inside,outside) X.X.X.X BOS2DC1 netmaskX.X.X.X
static (inside,outside) X.X.X.X1 BACKUP netmaskX.X.X.X
static (inside,outside) X.X.X.X0 AW netmaskX.X.X.X
static (inside,MV) X.X.X.XX.X.X.Xnetmask 255.255.255.0
static (MV,test) X.X.X.X X.X.X.X netmask 255.255.255.0
static (MV,dmz) X.X.X.X X.X.X.X netmask 255.255.255.0
static (inside,outside) X.X.X.X FS1 netmaskX.X.X.X
static (inside,outside) X.X.X.X1 CDEVSQL netmaskX.X.X.X

 
Upvote 0 Downvote
For the PC you are trying to add to the domain, do you have the DC of the domain as one of you DNS servers? You will need that.
 
Upvote 0 Downvote
Yeah I have it as one of the DNS servers. I think I need to allow a port or something because I get RPC errors.
 
Upvote 0 Downvote
still looking for assistance.

Thanks
Aaron
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Sameer258
  • Locked
  • Question
Need Help to Find ip and mac address with email who one open my email
Replies
0
Views
1K
Sameer258
Sameer258
Sparrow4
  • Locked
  • Question
Configure Avaya IPO R11 / VM Pro + Office365 or Exchange for voicemail to email
Replies
2
Views
811
Johnkite
Johnkite
ISDPCMAN
  • Locked
  • Question
RDP fails over VPN
Replies
1
Views
360
gkittelson
gkittelson
Russtoleum
  • Locked
  • Question
SW GVC won't route traffic through sonicwall to offsite tunnel unless it leases an ip on the same su
Replies
1
Views
289
Russtoleum
Russtoleum
wrighbr1
  • Locked
  • Question
Cisco ASA 5505 site to site VPN problem
Replies
0
Views
188
wrighbr1
wrighbr1

Part and Inventory Search

Sponsor

Back
Top