Site to Site VPN..Problem Joining Domain.

[joeyrego]

Hey,

I have two locations that are connected via a Site to Site Tunnel through ipsec. At the Remote location I have a Pix 501 with an internet connection and at my main site I have 3000 Concentrator with a t1 connection.

I am able to make a tunnel. I am able to Ping any ip address from the remote location to the main and vice versa.

I am not able to browse to resources by going to start- run from either location.

At the Remote location the Pix is giving IP addresses to clients via DHCP. Clients are able to get to the internet and once again a tunnel has been established.

I need to join the computers at the remote location to the Main locations domain.

I do not have any servers at the remote location.

Has anyone ever done this? Can someone help me out?

Thanks..

Joey

 

[BuckWeet]

Is this a windows 2000 domain?

or NT4

If its a full win2k/xp you need to use DDNS..

on the remote clients just put in the dns ip of your Active directory dns servers...

same for the headend..


if not a active directory domain, implement WINS

 

[joeyrego]

Thanks for the reply.

It is a windows 2000 Domain with DHCP, WINS and DNS implemented.

I have put in the DNS and WINS of my Active directory domain but still nothing.

I am not able to ping by name or anything. Is there anything that i need to do on the Concentrator?

 

[BuckWeet]

if you're not able to ping by name, then dns isn't working properly..

have you tried pining by FQDN instead of just the server name?


BuckWeet

 

[joeyrego]

In my main network DNS is working correctly. Its just through the the VPN tunnel that it is not.. I have tried to ping by:

IP....This works
Server.domain.com.....this doesn.t work.
domain.com......this doesn't work.
server.....this doesnt work.

For the ones that do not work i get Ping could not find host . Please check name and try again

Is there anything that has to be done on the concentrator? Is there anything additional that i need to do on my DNS servers in my main network to get it to work through the tunnet?

Thanks for your help in advance..

 

[colinT23]

Hi,

Have you tried giving the clients at the remote location the WINS server (main office) IP address (TCP/IP Properties etc..)?

Regards Colin.

 

[joeyrego]

Yeah ...Actually the client that i am using i have assigned an ip address of the inside network of the remote location and assigned the IP address of the 2 dns servers as well as WINS..through tcp/ip properties..

I appreciate your suggestion though.

JOEY

 

[colinT23]

The only example I had of this problem was when I setup a test lab, trying to setup a VPN between 2 501's with a PC behind 1 and a Win 2K server behind the other. When I tried to browse by server-name, I got nothing. When I tried browsing by server IP address, I was able to see the server's shared resources and the client IP I was browsing from was picked up by the WINS server. After that, I could browse by name. Can you browse by IP address (and not just ping) ?

Regards Colin.