September 7, 2008 10:47am pdt

Member Login

Hall of Fame

Yearly

1RobWill 359,633
2batry_boy 238,234
3lrmoore 182,443
4arnold 120,053
5dpk_wal 72,695
6mwecom... 67,924
7ebjers 44,300
8MrHusy 43,020
9mkielar 42,800
10Qlemo 41,435
11Voltz-dk 37,970
12TechSoEasy 37,914
13Cyclops3... 34,840
14tigermatt 32,825
15trinak96 28,315
16keith_ala... 27,046
172PiFL 22,725
18JFrederic... 21,480
19PeteLong 21,475
20from_exp 21,275
21stuknhaw... 20,075
22rsivanandan 19,950
23rowansmith 19,875
24johnb6767 19,122
25RPPreacher 18,450

	[x] Attachment Details

Computer on IPSec VPN Tunnel can Authenticate to AD but doesn't show up in Windows Networking?

Zones: Virtual Private Networking (VPN), IPSec Security Protocol, Windows Vista

Tags: Networking IPsec Gateway to Gateway

I have 2 IP addresses running to my home.

One IP I have going to a PC/Router running server Windows Server 2008. (PC1)

The other IP I have going to another PC/Router running Windows Vista x86(PC2)

I have one Vista x86 laptop logged into the domain running on PC1. (LT1)

Routers on PC1 and PC2 have a hardware IPSec gateway to gateway VPN tunnel connecting them, this is working as well as I can tell.

1. The VPN tunnel between PC1 and PC2 works because PC2 can log into PC1s hosted domain, access itself in Active Directory and be logged into by users in Active Directory. However, I can ONLY resolve the Active Directory if I set PC2's preferred dns to 192.168.1.5 (servers IP address). I'm guessing some of my networking issues are a result of this, can someone advice on how I can correctly connect to the AD on the server if i'm not using 192.168.1.5 as my preferred DNS.

      I can manage LT1 and PC1 from PC2 if i search the AD.
      PC2 can browse the internet and otherwise do all the thing you would want.
      PC2 is getting Group Policy both default and the one i have assigned to that OU.
      PC2 is getting System time from PC1
      PC2 is getting updates through WSUS.
      ALL Computers can Windows Remote Desktop with each-other however they have to use IP's not the computer names to do so.
      PC1 and LT1 do not show up in PC2's network (the reverse is also true) (This is my main gripe, no windows file sharing)

Why can I do all this yet PC2 will not show up on PC1s windows network connections folder? (and before you ask yes file sharing and network discovery is on.)

Start your free trial to view this solution

[x]

The Solution Rating System

With so many solutions, how can you tell which solutions are most likely to help you and which ones are not? To provide you with a tool to use, we rate our solutions based on various elements that most accurately determine if a solution is a quality solution. To explain what factors affect the solution rating, here are the elements we take into consideration when formulating our solution rating.

The Grade of the Solution
The Zone Rank of the Expert Providing the Solution
The Number of Author and Expert Comments
The Number of Experts Contributing
The Feedback of the Community

Your Input Matters
Because of the way the system is set up, the most important variable in this equation is you. As a member of Experts Exchange, you are able to cast your vote on the quality of the solutions in regard to how complete, accurate, helpful and easy to understand each solution is. When you provide your feedback, each rating is adjusted accordingly. So, if you see a solution that has a poor rating that you think is a good solution, let us know by rating it. As you do, the rating will be adjusted and will become more accurate for other members of our site.

If you have any suggestions that you would like to make for our rating system, please ask a question in the Suggestions Zone of Community Support.

Thank you!

9.9

Question Stats

Zone: Software

Question Asked By: -Polak

Solution Provided By: RobWill

Participating Experts: 1

Solution Grade: A

Translate:

Loading Advertisement...

Open Discussion

Comment by -Polak

Note I noticed that on the Router settings there is a checkmark for "allow NetBIOS broadcast" that I neglected to check.

Comment by RobWill

Did it help? NetBIOS broadcasts are not routable, but a few routers have a feature that acts like a forwarding service. Some argue that there are security concerns with this, but I have not worked with it.

Comment by -Polak

Well I had my first chance to test the option today, and well no it doesn't work but that could just be the setup I'm running through it might work from a Vista to Vista machine for example.

Comment by -Polak

Hey good news, I actually go the PC on the other end of the IPsec VPN tunnel to show up in network.
Server 2008 by default has the "Computer Browser" service disable in services.msc
Enabled that and the VPN'd Computer's netbios now comes through; and on top of that my server can now see my MacBook.

Comment by RobWill

>>"Server 2008 by default has the "Computer Browser" service disable"
That is good to know. Thanks for updating.

20080723-EE-VQP-34 / EE_QW_2_20070628