From: Francis Gibbons (francis.gibbons@xxxxxxxxxxxxxxxxxxx)
Date: Thu Dec 07 2000 - 10:54:42 GMT-3
You are not NAT'ing the clients to the Domain Controller are you? I think
you are by the fact that the branch office shares 1 IP address.
Domain Logon can NOT be NAT'd while SMB/CIFS can be (ie map drives)
Francis Gibbons
Network Architect, CCSI, CCNP, CNE, MCSE
Global Knowledge Network (Canada)
Email: francis.gibbons@globalknowledge.com
----- Original Message -----
From: "Jim Bond" <trycisco@yahoo.com>
To: <cisco@groupstudy.com>
Cc: <ccielab@groupstudy.com>
Sent: Thursday, December 07, 2000 1:18 AM
Subject: tough VPN question
> Hello,
>
> I'm trying to set up a IPSec between a PIX (branch
> office) and router (central office). All PCs at branch
> office share 1 ip address. IPSec seems to be working
> fine because clients can ping/telnet/email/map drives
> from/to central office. The problem is they can't
> logon NT domain. They can ping domain controller
> though.
>
> Any idea why they can't log on NT domain? (The
> machines were already added to domain)
>
> Thanks in advance.
>
>
> Jim
>
This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 08:25:59 GMT-3