Solved

cannot access shares via VPN

Posted on 2006-11-06
3
264 Views
Last Modified: 2010-04-12
Hello,

I am using Watchguard Firebox x1000 for my VPN box.

I have mobile users who when connected to the VPN try accessing shares on the network. They get messages like:
Error occured while connecting to z: to \\servername\sharename.
Microsoft Windows Network: The network name cannot be found. System error 53.

All my users are WinXPPro. I have 8 mobile users but I have one user who is able to access the share without any problem.

I am able to ping by ip and computer name over the VPN.
I can connect to any share by ip address. ie \\192.168.128.8\sharename over the VPN.
I can ping anything over the VPN.
Ipconfig shows the correct WINS and DNS settings on the mobile systems.
Using net view/network: \\servername doesnt show any shares.
I have added the entries in my lmhost and host file on the workstations
The one system I have that can connect fine seems like it is setup just like all the others.
I've made sure that the mobile users are on a different subnet.
I can use Network neighborhood to browse my network fine. but when I try to see any shares on any server it give me the same error.

Any idea what I am missing?

Thanks
0
Comment
Question by:Steviek411
  • 2
3 Comments
 
LVL 8

Expert Comment

by:saw830
ID: 17884902
Hi Steviek411,
I've seen this error with Kerberos problems occuring over VPNs.  More precisely, it has been Kerberos UDP packets getting fragmented.
Here's a MS document that may help with your problem:
http://www.microsoft.com/technet/prodtechnol/windowsserver2003/technologies/security/tkerberr.mspx
To test and/or fix the UDP packet fragmentation problem, have a look at this MS document:
http://support.microsoft.com/kb/244474

Hope this helps,
Alan
0
 
LVL 77

Accepted Solution

by:
Rob Williams earned 500 total points
ID: 17886212
-Test if you can connect with the full computer and domain name as  \\ComputerName.domain.local  If so, add the suffix DomainName.local to the DNS configuration of the network adapter under | TCP/IP properties | Advanced | DNS | "Append these DNS suffixes (in order)" | Add ]
-You could also add entries to the LMHosts file which works well but is a bit of a paint to manage if you are connecting to multiple systems.
http://www.microsoft.com/technet/prodtechnol/windows2000serv/reskit/cnet/cnfd_lmh_qxqq.mspx?mfr=true
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 17895645
Thanks Steviek411,
--Rob
0

Featured Post

Secure Your Active Directory - April 20, 2017

Active Directory plays a critical role in your company’s IT infrastructure and keeping it secure in today’s hacker-infested world is a must.
Microsoft published 300+ pages of guidance, but who has the time, money, and resources to implement? Register now to find an easier way.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When you connect to your workplace's VPN, you may not notice that you are using your workplace's servers to serve up webpages.  This might be undesirable since the workplace can log all the places you've been.  It also might be very slow to load pag…
Like many others, when I created a Windows 2008 RRAS VPN server, I connected via PPTP, and still do, but there are problems that can arise from solely using PPTP.  One particular problem was that the CFO of the company used a Virgin Broadband Wirele…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

713 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question