Only 10 internet connections for a domain?

We have a Windows Standard Server 2003 AD domain with 14  client XP Professional computers. Each day we turn on the computers and find the last 4 computers we turn on  (we've tried turning them on in different orders, it doesn't make a difference) take 5 - 10 minutes "Applying computer settings" and then do not have the ability to view web pages. All clients are able to ping the AD & DNS server and are able to successfully ping external domain names via the command line. All 14 clients are able to run client/server applications and view the network. Is it possible that CALs are limiting the connection to the internet on 4 computers? I know we have 10 CALs (per server mode). Any ideas would be greatly appreciated.
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

JohnBusiness Consultant (Owner)Commented:
It is best to have as many CALs as you do users, and in this case, I would add another 5 (1 pack).

Do you have a firewall type router that limits you to 10 connections. I have seen that before at clients.

.... Thinkpads_User
What firewall/router do you have? I would start looking there.
Are you running a proxy server of any sort? (Licensed for 10 users perhaps?)
GnDurangoAuthor Commented:
We do have a Cisco PIX 500 firewall in place. I was assured it does nothing more than create a secure tunnel for specific file transfers from another site. The other site will not allow access to the PIX configuration. I'm attempting to rule out everything else before jumping into that bureaucratic nightmare. I'm afraid that may be the cause however.
Cloud Class® Course: Microsoft Exchange Server

The MCTS: Microsoft Exchange Server 2010 certification validates your skills in supporting the maintenance and administration of the Exchange servers in an enterprise environment. Learn everything you need to know with this course.

Lee W, MVPTechnology and Business Process AdvisorCommented:
I would suggest you remove the firewall and go straight to the internet with a cheap router FOR TESTING ONLY.   Just to be 100% certain it's not some kind of router/firewall configuration issue because this sounds a LOT like a firewall/router limitation on some older models.
If its a PIX 501, I would agree with Thorrsson and leew and guess that it is only licensed for 10 hosts.

If you ask the people that manage it to do a "show ver" it will probably look like this

Cisco PIX Firewall Version 6.3(5)145
Cisco PIX Device Manager Version 3.0(4)

Compiled on Thu 24-Jul-08 15:27 by root

pixfirewall up 2 days 20 hours

Hardware:   PIX-501, 16 MB RAM, CPU Am5x86 133 MHz
Flash E28F640J3 @ 0x3000000, 8MB
BIOS Flash E28F640J3 @ 0xfffd8000, 128KB

0: ethernet0: address is 0012.80e6.f765, irq 9
1: ethernet1: address is 0012.80e6.f767, irq 10
Licensed Features:
Failover:                    Disabled
VPN-DES:                     Enabled
VPN-3DES-AES:                Enabled
Maximum Physical Interfaces: 2
Maximum Interfaces:          2
Cut-through Proxy:           Enabled
Guards:                      Enabled
URL-filtering:               Enabled
Inside Hosts:                10
Throughput:                  Unlimited
IKE peers:                   10

This PIX has a Restricted (R) license.

Serial Number: <redacted>
Running Activation Key: <redacted>
Configuration last modified by enable_15 at 15:13:20.212 BST <redacted>

Open in new window

The key part is the "Inside Hosts:"

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
GnDurangoAuthor Commented:
Thanks everyone. It was definitely the PIX firewall's limitation. Replaced with a new firewall and all is well. Added 5 more CAL's as well, though that was not the issue.
JohnBusiness Consultant (Owner)Commented:
Thank you. I was happy to help and thank you for the followup. ... Thinkpads_User
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows Server 2003

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.