Solved

vpn using win2k pro and 3rd party client

Posted on 2002-03-20
16
161 Views
Last Modified: 2010-04-11
Hi,

I'm using windows 2000 professional on a laptop thats a memeber of my domain. The laptop has got a dialin account configured and safenet vpn client installed. On the office network, a 3com internet firewall dmz is installed to secure internet access and provide vpn capabilities. So, I dial in and ping to the lan ip address of the server (192.168.0.1), the safenet client establishes the vpn connection and it the ping gets a reply. So, the vpn works. But when I want to to e.g. net use \\192.168.0.1\ipc$ or net use x: \\192.168.0.1\data, I get the following error : No domian controller available. ???

When I logon to the notbook locally (not choosing the domain profile) it all works fine ...

HELP
0
Comment
Question by:buddhole
  • 9
  • 7
16 Comments
 
LVL 11

Expert Comment

by:geoffryn
ID: 6882811
It sounds as though name resolution to the DC is broken.  Can you ping the DC by name?
0
 
LVL 5

Author Comment

by:buddhole
ID: 6882948
Yes, I can.. Ieven can use Outlook to reach the exchange server. When I try net use \\server01\ipc$ I get system error 1311 No dc available to process your logon request..
0
 
LVL 11

Expert Comment

by:geoffryn
ID: 6882961
What is the OS of the server that you cannot reach?
0
 
LVL 5

Author Comment

by:buddhole
ID: 6882968
2k server, the only server (also runs exchange)
0
 
LVL 5

Author Comment

by:buddhole
ID: 6882975
The exact error is "There are currently no logon servers available to service the logon request"
0
 
LVL 11

Expert Comment

by:geoffryn
ID: 6882988
Is the server multihomed?
0
 
LVL 5

Author Comment

by:buddhole
ID: 6882993
The exact error is "There are currently no logon servers available to service the logon request"
0
 
LVL 5

Author Comment

by:buddhole
ID: 6882997
Nope, btw there's a nat router between the internet and the firewall
0
What Is Threat Intelligence?

Threat intelligence is often discussed, but rarely understood. Starting with a precise definition, along with clear business goals, is essential.

 
LVL 11

Expert Comment

by:geoffryn
ID: 6883013
You should check your WINS on the server.  I think the client might be querying the WINS for the DC and it is returning a different address.
0
 
LVL 5

Author Comment

by:buddhole
ID: 6883020
I'm running wins and it's working fine. I even added the wins server in the dialup conncetion. Next to that, I've added 1c records for the domain and the dc in my lnhosts...
0
 
LVL 11

Expert Comment

by:geoffryn
ID: 6883069
Maybe this is a cached credentials problem.  Have you tried to do a connect as?


1. Right-click My Computer, and then click Map Network Drive.

2. Map the drive letter and the folder.

3. Click "Connect using a different user name".

4. Enter the credentials in the universal naming convention (UNC)
   "Domain\Username" format.

5. In the password box, enter a password.

6. Click OK.
0
 
LVL 5

Author Comment

by:buddhole
ID: 6883194
geoffryn,

I dont'wan't to be rude, but if I don't know how to perform some action, I wll ask you, saves us both some time.

I'm holding some info from you, the laptop is memeber of the domain. When I log, I can choose from two options, the domain and local. when I log on to the local to the laptop, all the net use commands work, when I log on to the domain, the net use command don't work.

I'm 100% sure that my credentials are ok...
0
 
LVL 11

Expert Comment

by:geoffryn
ID: 6883220
That is a sign of cached credential problems.  A local account will not be caching creds for the domain.
0
 
LVL 5

Author Comment

by:buddhole
ID: 6883240
You were right about htis, when I make a network connection and use the administrator@mydomain.com account (same account as I'm logged in as) it works, after that, I can net use what I want...

But after a reboot, I must make a network connection as the domain admin and then I can use it again... How can I solve this ?
0
 
LVL 11

Accepted Solution

by:
geoffryn earned 300 total points
ID: 6883279
I don't think you can.  You would have to force the domain back to NTLM and disable Kerberos.  A work around might be to create a local account with the same user name and password and use pass-thru authentication
0
 
LVL 5

Author Comment

by:buddhole
ID: 6883288
mwooah.. this is a complete other problem.. I now know what the problem is,Thanx !
0

Featured Post

Superior storage. Superior surveillance.

WD Purple drives are built for 24/7, always-on, high-definition security systems. With support for up to 8 hard drives and 32 cameras, WD Purple drives are optimized for surveillance.

Join & Write a Comment

This story has been written with permission from the scammed victim, a valued client of mine – identity protected by request.
If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now