RE: tough VPN question

Thu, 07 Dec 2000 13:42:46 -0800 

Hello,

in addition, consider that IPSEC does NOT deal whith Bcast/Mcast. If your
choice is to propagate them, you must specifie in the (extended) ACL controling
encrypted trafic something like "deny any 255.255.255.255 0.0.0.0" and so on for
Mcast...
this fools me some month ago.

Hope this help,
 jean-marc

On 07-Dec-00 Jim Brown wrote:
> Jim,
> 
> Are the remote clients using WINS or static mappings in the HOST or LMHOST
> file to identify the PDC/BDC? 
> 
> If not, the remote clients have no way of locating the PDC or BDC from a
> remote network unless you forward the broadcasts.
> 
> This sounds like the issue if you have the ability to manually map drives
> without the use of the browser service.
> 
> -----Original Message-----
> From: Jim Bond [mailto:[EMAIL PROTECTED]]
> Sent: Wednesday, December 06, 2000 11:19 PM
> To: [EMAIL PROTECTED]
> Cc: [EMAIL PROTECTED]
> Subject: tough VPN question
> 
> 
> Hello,
> 
> I'm trying to set up a IPSec between a PIX (branch
> office) and router (central office). All PCs at branch
> office share 1 ip address. IPSec seems to be working
> fine because clients can ping/telnet/email/map drives
> from/to central office. The problem is they can't
> logon NT domain. They can ping domain controller
> though.
> 
> Any idea why they can't log on NT domain? (The
> machines were already added to domain)
> 
> Thanks in advance.
> 
> 
> Jim
> 
> __________________________________________________
> Do You Yahoo!?
> Yahoo! Shopping - Thousands of Stores. Millions of Products.
> http://shopping.yahoo.com/
> 
> _________________________________
> FAQ, list archives, and subscription info:
> http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> 
> _________________________________
> FAQ, list archives, and subscription info:
> http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

----------------------------------
E-Mail: Jean-Marc Gilbert <[EMAIL PROTECTED]>
Date: 07-Dec-00
Time: 22:05:00
----------------------------------

_________________________________
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Reply via email to