Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Symantec Firewall/VPN newbbie questions

Posted on 2002-07-16
9
Medium Priority
?
293 Views
Last Modified: 2010-08-05
Dear Experts,

I have used two Symantec Firewall/VPN products, one is 200R another is 100R.
I have setup a gateway to gateway vpn connection with
the network behind 200R as 192.168.0.0 and the network behind 100R is 192.168.100.0 just as that illustrated in the symantect document. Now, 192.168.0.* is able to ping/telnet/ssh 192.168.100.*, and 192.168.100.* is able to ping/telnet/ssh 192.168.0.*. but I CAN'T map a network drive at 192.168.0.* to 192.168.100.*, and vise-vista.
I do added the ip and name in the c:\windows\hosts file, but the result is the same -- resource can't be assess, not logged on. should I need to set the two networks under a network to make use of network drive and
network browsing, said 192.168.0.1--192.168.0.124 behind 200R, and 192.168.0.125--192.168.0.254 to behind 100R.
 
Except the above question, I wonder it is possible to have a linux nfs mount between the two networks. I have tried but failed.

Your input is highly appreciated!!
Thanks and Regards!

KC
0
Comment
Question by:kcwang7
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 3
9 Comments
 
LVL 51

Accepted Solution

by:
ahoffmann earned 800 total points
ID: 7159003
Windoze Browsing does not work in routed networks.
You nned to add somthing like:

10.0.0.1   "Domain         \0x1b"   #PRE
#
#      NOTE: Spacing of these entries is imperative. Replace 10.0.0.1 with the
#      IP address of your primary domain controller (PDC), PDCName with the
#      NetBIOS name of your PDC, and Domain with your Windows NT domain name.
#      There must be a total of 20 characters within the quotations (the
#      domain name plus the appropriate number of spaces to pad up to 15
#      characters plus the backslash plus the NetBIOS hex representation of
#      the service type).
# may be testet with:  nbtstat -c

to your hosts file.
Also the firewall must allow ports 137-139 in both directions.

Linux NFS mounts work also if the corresponding ports (2049) are open.
0
 
LVL 51

Expert Comment

by:ahoffmann
ID: 7160399
What was wrong/unsufficient with my suggestion?
0
 

Author Comment

by:kcwang7
ID: 7166225
Dear ahoffmann,

I think I have to say sorry to you as I never tried
your suggestion after I find out that by using the
ip address, I am able to access the share. And yes,
the NFS mount works but with very slow speed. I would try your suggestions and see if it works, and get back to you. but can U explain why by adding the entry that things will work?

Thank you!
0
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 51

Expert Comment

by:ahoffmann
ID: 7166544
M$'s SMB is not routable.
0
 

Author Comment

by:kcwang7
ID: 7168850
Dear ahoffmann,

seems that it won't work out by adding the entry in
the VPN client's hosts file. After adding that, I tried
to browse the network, the client can only view itself,
and no others..

Regards,
KC
0
 
LVL 51

Expert Comment

by:ahoffmann
ID: 7168991
might be a couple of problems:
  1. is the syntax (spaces in particular) correct in hosts file
  2. is hosts file used at all
  3. are the ports 137 .. 139 open at irewall (both ends)
  4. is the remote network NT-based
0
 

Author Comment

by:kcwang7
ID: 7170924
Dear ahoffmann,

It is very kind of you to help me in this issue.
I would try to submit request to the community
support to re-rate your answers.

Thanks and Regards,
KC
0
 

Expert Comment

by:ComTech
ID: 7171986
Hello kcwang7, ap per your request in Community Support, the grade has been changed to an A.

Regards,
ComTech
CS Admin @ EE
0
 
LVL 51

Expert Comment

by:ahoffmann
ID: 7172339
Thanks for being fair.
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

One of the Top 10  common Cisco VPN problems are not-matching shared keys. This is an easy one to fix, but not always easy to notice, see the case below. A simple IPsec tunnel between fast Ethernet interfaces of routers SW1 (f1/1) and R1(f0/0). …
This is an article about my experiences with remote access to my clients (so that I may serve them) and eventually to my home office system via Radmin Remote Control. I have been using remote access for over 10 years and have been improving my metho…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

722 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question