[pptp-server] problems with win2k client

George Vieira GeorgeV at citadelcomputer.com.au
Tue Dec 11 21:33:40 CST 2001 

OK.. it's probably because your workstations don't have an account for you
locally on their machine and your not logged into the domain so your
authenticating on "username" and not "domain/username" which the
workstations are trusting you on... get it..


test this: Get a workstation to add your username locally on their PC with
the same login and password as the username password your vpn client is
logged in... then try it to that workstation..

ANOTHER thing: try mapping a share on a workstation and click the "different
username" and selected Administrator and password..

Obviously you need administrator priveledges but this is JUST to test what's
going on..


My guess is that the workstations are authenticating you on the machine
login which is not on the domain itself..


thanks,
George Vieira
Systems Manager
Citadel Computer Systems P/L


-----Original Message-----
From: alan premselaar [mailto:alien at 12inch.com]
Sent: Wednesday, 12 December 2001 2:29 PM
To: George Vieira
Subject: RE: [pptp-server] problems with win2k client


I have a domain account (actually, i guess it's active directory)  ... 
they're all win2k machines

i get error 5: access denied

when i try "net view <ipaddress>" or "net view \\<ipaddress>"

alan

>Do you have an account on the server? Are all of these NT type machines or
>any of them Windows 98?
>
>OK, can you try by IP address?
>
>net view \\10.10.10.10
>
>or something..
>
>
>thanks,
>George Vieira
>Systems Manager
>Citadel Computer Systems P/L
>
>
>-----Original Message-----
>From: alan premselaar [mailto:alien at 12inch.com]
>Sent: Wednesday, 12 December 2001 1:41 PM
>To: George Vieira; pptp-server at lists.schulte.org
>Subject: RE: [pptp-server] problems with win2k client
>
>
>George,
>
>   Thanks for the reply.  I've double-checked and I'm resolving names
>properly. i'm able to ping the host(s) no problem, but i don't get any
>response from "net view \\hostname" or the network neighborhood... (and it
>takes its time to timeout)
>
>in explorer (network neighborhood) it times out and returns with "can't
>access \\<hostname>.  can't find network path"  (this is a loose
>translation as i'm using a japanese operating system on the w2k machine)
>
>from "net view \\<hostname>" i get:
>
>system error 1311: (a bunch of japanese i *can't* read) and "no login
>server"
>
>
>any other ideas?
>
>alan
>
>At 1:22午後 +1100 12.12.01, George Vieira wrote:
> >firstly, localip and remoteip is for pptpd.conf not
/etc/ppp/options.pptpd
> >or whatever.
> >
> >You may be having a name resolution problem with the neighbourhood
>problem..
> >you get the list but it doesn't know how to get there...
> >can you ping them or even net view ¥¥machinename it at all??
> >
> >
> >thanks,
> >George Vieira
> >Systems Manager
> >Citadel Computer Systems P/L
> >
> >
> >-----Original Message-----
> >From: alan premselaar [mailto:alien at 12inch.com]
> >Sent: Wednesday, 12 December 2001 1:16 PM
> >To: pptp-server at lists.schulte.org
> >Subject: [pptp-server] problems with win2k client
> >
> >
> >I'm running a redhat linux 6.2 installation with the 2.2.19 kernel
> >(downloaded and compiled from source)
> >i've installed pptpd-1.1.2 and pppd 2.3.11 (with the mppe and ms-chapv2
> >patches)
> >
> >i've got 3 ethernet cards installed in the machine, 1 setup on the DMZ, 1
> >on the local internal network (192.168.0.x), and 1 configured as a
> >completely different (192.168.254.x) network for testing purposes.
> >
> >I've setup a PC running win2k pro on the 192.168.254.x network as a test
> >connection machine.
> >
> >i have a couple of seperate problems, i think.
> >
> >Firstly, In all the documentation i've read, and the mail on this list,
> >people keep making reference to setting "localip <ip>" and "remoteip
<ip>"
> >in the options.pptp file (or /etc/ppp/options file) ... whenever I do
that,
> >PPP barfs saying that it's an invalid option.  i'm a little confused by
> >that, but it's not my main problem.
> >
> >
> >the main problem i'm having is this:
> >
> >I can connect via the test vpn from my win2k client.  I can connect to my
> >exchange server no problem.  when I open the network neighborhood (or
> >whatever it's called in w2k) i can see my domain(s) and all the computers
> >in the domain show up when i double-click the domain name... (so far so
> >good) ... however, when i double-click any of the computers I can't
>connect.
> >
> >for the purpose of the testing, i have my password in the chap-secrets
file
> >set identically to my domain-login password, and my username set
> >identically to my domain-username.  also, for the time being, I have my
> >firewall disabled on this machine (i can worry about firewalling once
I've
> >gotten the configuration working)
> >
> >this seems to be the case regardless of whether or not I've got samba
> >running on the linux machine.  (I've tried both ways)
> >
> >also note that I have added the following rules in my ipchains:
> >
> >ipchains -I forward 1 -s 192.168.0.0/24 -d 192.168.0.0/24 -j ACCEPT
> >ipchains -I forward 2 -s 192.168.0.0/24 -j MASQ
> >
> >
> >*EVERYTHING* (as far as i can tell) aside from the network browsing is
> >working properly thru the vpn.
> >
> >any advice, assistance, ritual dance recommendation, etc. are greatly
> >appreciated.
> >
> >
> >thanks in advance
> >
> >alan premselaar
> >----
> >  there's nothing like the undying sense of reliability provided by
modern
> >technology.
> >----
> >alan premselaar
> >alien at 12inch.com
> >www.12inch.com
> >_______________________________________________
> >pptp-server maillist  -  pptp-server at lists.schulte.org
> >http://lists.schulte.org/mailman/listinfo/pptp-server
> >--- To unsubscribe, go to the url just above this line. --
> >_______________________________________________
> >pptp-server maillist  -  pptp-server at lists.schulte.org
> >http://lists.schulte.org/mailman/listinfo/pptp-server
> >--- To unsubscribe, go to the url just above this line. --
>
>----
>  there's nothing like the undying sense of reliability provided by modern
>technology.
>----
>alan premselaar
>alien at 12inch.com
>www.12inch.com

----
  there's nothing like the undying sense of reliability provided by modern 
technology.
----
alan premselaar
alien at 12inch.com
www.12inch.com

More information about the pptp-server mailing list