Solved

vpn using win2k pro and 3rd party client

Posted on 2002-03-20
16
166 Views
Last Modified: 2010-04-11
Hi,

I'm using windows 2000 professional on a laptop thats a memeber of my domain. The laptop has got a dialin account configured and safenet vpn client installed. On the office network, a 3com internet firewall dmz is installed to secure internet access and provide vpn capabilities. So, I dial in and ping to the lan ip address of the server (192.168.0.1), the safenet client establishes the vpn connection and it the ping gets a reply. So, the vpn works. But when I want to to e.g. net use \\192.168.0.1\ipc$ or net use x: \\192.168.0.1\data, I get the following error : No domian controller available. ???

When I logon to the notbook locally (not choosing the domain profile) it all works fine ...

HELP
0
Comment
Question by:buddhole
  • 9
  • 7
16 Comments
 
LVL 11

Expert Comment

by:geoffryn
ID: 6882811
It sounds as though name resolution to the DC is broken.  Can you ping the DC by name?
0
 
LVL 5

Author Comment

by:buddhole
ID: 6882948
Yes, I can.. Ieven can use Outlook to reach the exchange server. When I try net use \\server01\ipc$ I get system error 1311 No dc available to process your logon request..
0
 
LVL 11

Expert Comment

by:geoffryn
ID: 6882961
What is the OS of the server that you cannot reach?
0
Enterprise Mobility and BYOD For Dummies

Like “For Dummies” books, you can read this in whatever order you choose and learn about mobility and BYOD; and how to put a competitive mobile infrastructure in place. Developed for SMBs and large enterprises alike, you will find helpful use cases, planning, and implementation.

 
LVL 5

Author Comment

by:buddhole
ID: 6882968
2k server, the only server (also runs exchange)
0
 
LVL 5

Author Comment

by:buddhole
ID: 6882975
The exact error is "There are currently no logon servers available to service the logon request"
0
 
LVL 11

Expert Comment

by:geoffryn
ID: 6882988
Is the server multihomed?
0
 
LVL 5

Author Comment

by:buddhole
ID: 6882993
The exact error is "There are currently no logon servers available to service the logon request"
0
 
LVL 5

Author Comment

by:buddhole
ID: 6882997
Nope, btw there's a nat router between the internet and the firewall
0
 
LVL 11

Expert Comment

by:geoffryn
ID: 6883013
You should check your WINS on the server.  I think the client might be querying the WINS for the DC and it is returning a different address.
0
 
LVL 5

Author Comment

by:buddhole
ID: 6883020
I'm running wins and it's working fine. I even added the wins server in the dialup conncetion. Next to that, I've added 1c records for the domain and the dc in my lnhosts...
0
 
LVL 11

Expert Comment

by:geoffryn
ID: 6883069
Maybe this is a cached credentials problem.  Have you tried to do a connect as?


1. Right-click My Computer, and then click Map Network Drive.

2. Map the drive letter and the folder.

3. Click "Connect using a different user name".

4. Enter the credentials in the universal naming convention (UNC)
   "Domain\Username" format.

5. In the password box, enter a password.

6. Click OK.
0
 
LVL 5

Author Comment

by:buddhole
ID: 6883194
geoffryn,

I dont'wan't to be rude, but if I don't know how to perform some action, I wll ask you, saves us both some time.

I'm holding some info from you, the laptop is memeber of the domain. When I log, I can choose from two options, the domain and local. when I log on to the local to the laptop, all the net use commands work, when I log on to the domain, the net use command don't work.

I'm 100% sure that my credentials are ok...
0
 
LVL 11

Expert Comment

by:geoffryn
ID: 6883220
That is a sign of cached credential problems.  A local account will not be caching creds for the domain.
0
 
LVL 5

Author Comment

by:buddhole
ID: 6883240
You were right about htis, when I make a network connection and use the administrator@mydomain.com account (same account as I'm logged in as) it works, after that, I can net use what I want...

But after a reboot, I must make a network connection as the domain admin and then I can use it again... How can I solve this ?
0
 
LVL 11

Accepted Solution

by:
geoffryn earned 300 total points
ID: 6883279
I don't think you can.  You would have to force the domain back to NTLM and disable Kerberos.  A work around might be to create a local account with the same user name and password and use pass-thru authentication
0
 
LVL 5

Author Comment

by:buddhole
ID: 6883288
mwooah.. this is a complete other problem.. I now know what the problem is,Thanx !
0

Featured Post

Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

How do we balance the user experience (UX) with reasonable security measures? It can be done, if you keep these fundamentals in mind.
This article describes my battle tested process for setting up delegation. I use this process anywhere that I need to setup delegation. In the article I will show how it applies to Active Directory
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

790 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question