Solved

cannot access shares via VPN

Posted on 2006-11-06
3
265 Views
Last Modified: 2010-04-12
Hello,

I am using Watchguard Firebox x1000 for my VPN box.

I have mobile users who when connected to the VPN try accessing shares on the network. They get messages like:
Error occured while connecting to z: to \\servername\sharename.
Microsoft Windows Network: The network name cannot be found. System error 53.

All my users are WinXPPro. I have 8 mobile users but I have one user who is able to access the share without any problem.

I am able to ping by ip and computer name over the VPN.
I can connect to any share by ip address. ie \\192.168.128.8\sharename over the VPN.
I can ping anything over the VPN.
Ipconfig shows the correct WINS and DNS settings on the mobile systems.
Using net view/network: \\servername doesnt show any shares.
I have added the entries in my lmhost and host file on the workstations
The one system I have that can connect fine seems like it is setup just like all the others.
I've made sure that the mobile users are on a different subnet.
I can use Network neighborhood to browse my network fine. but when I try to see any shares on any server it give me the same error.

Any idea what I am missing?

Thanks
0
Comment
Question by:Steviek411
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 8

Expert Comment

by:saw830
ID: 17884902
Hi Steviek411,
I've seen this error with Kerberos problems occuring over VPNs.  More precisely, it has been Kerberos UDP packets getting fragmented.
Here's a MS document that may help with your problem:
http://www.microsoft.com/technet/prodtechnol/windowsserver2003/technologies/security/tkerberr.mspx
To test and/or fix the UDP packet fragmentation problem, have a look at this MS document:
http://support.microsoft.com/kb/244474

Hope this helps,
Alan
0
 
LVL 77

Accepted Solution

by:
Rob Williams earned 500 total points
ID: 17886212
-Test if you can connect with the full computer and domain name as  \\ComputerName.domain.local  If so, add the suffix DomainName.local to the DNS configuration of the network adapter under | TCP/IP properties | Advanced | DNS | "Append these DNS suffixes (in order)" | Add ]
-You could also add entries to the LMHosts file which works well but is a bit of a paint to manage if you are connecting to multiple systems.
http://www.microsoft.com/technet/prodtechnol/windows2000serv/reskit/cnet/cnfd_lmh_qxqq.mspx?mfr=true
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 17895645
Thanks Steviek411,
--Rob
0

Featured Post

Create the perfect environment for any meeting

You might have a modern environment with all sorts of high-tech equipment, but what makes it worthwhile is how you seamlessly bring together the presentation with audio, video and lighting. The ATEN Control System provides integrated control and system automation.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Secure VPN Connection terminated locally by the Client.  Reason 442: Failed to enable Virtual Adapter. If you receive this error on Windows 8 or Windows 8.1 while trying to connect with the Cisco VPN Client then the solution is a simple registry f…
I've written this article to illustrate how we can implement a Dynamic Multipoint VPN (DMVPN) with both hub and spokes having a dynamically assigned non-broadcast multiple-access (NBMA) network IP (public IP). Here is the basic setup of DMVPN Pha…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

751 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question