cant connect to samba domain controller through remote network vpn connection
Posted on 2005-03-24
I'm trying to setup a remote office using IPCop based firewalls and a samba domain controller.
The setup is as follows
Samba <--> LAN <--> IPCop1 <--> VPN <--> Internet <--> VPN <--> IPCop2 <--> Remote LAN <--> XP Client
Remote LAN: 172.16.101.0/24
XP Client: 172.16.101.2
Samba is running in domain mode and XP and 2k workstations are login to its 'domain' from LAN with no problem. From the XP Client on the remote LAN, I get an error when I try to login to the domain at bootup, "The system could not log you on because the domain controller DOMAIN1 is not available" So instead I login as administrator to the local machine. Once I'm in on that machine, I can ping across the VPN to the remote network, and do anything, it even seems to use my local username/password to authenticate on the remote server, but not login when the system boots up.
Other services work fine, From the Remote LAN i can use the terminal application thats run here, based off a server on LAN. From the Remote LAN i can send and recieve email thats authenticated through the same machine as Samba.
It seems to me that something is wrong with my samba config thats prevening the remote network from authenticating.
in smb.conf i modified the line:
path = /tmp
hosts allow = 172.16.100.0/24, 172.16.101.0/24 <-- i added the 2nd one and restarted smb
There are other networks and other remote sites on this network that are working fine. Just the new one is broken. Ive tried turning off iptables as well with no luck.