cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
538
Views
0
Helpful
3
Replies

VPN - Windows group policy problem

ht-netacad
Level 1
Level 1

Hi, we are experiencing problems with our VPN sites.. we are using cisco 800 series routers on remote sites all with IPSEC VPN configured.. all sites connect back to a central site and terminate on a cisco pix 515. The problem is that VPN clients are not getting any group policy settings when logging into windows. Group policy works fine for NON VPN sites. Can anyone shed any reason or fix for this.. I read somewhere that this could be something to do with fragmented packets.. but for the life of me I dont know where to start..

thanks

Craig.

3 Replies 3

vmoopeung
Level 5
Level 5

Refer to the document "Most Common L2L and Remote Access IPSec VPN Troubleshooting Solutions" In that, go through the section Problem - Remote Access Users Connect to VPN and Have No Other Access to Resources

http://www.cisco.com/en/US/products/ps6120/products_tech_note09186a00807e0aca.shtml#topic-ra

dsheath
Level 1
Level 1

It could be the Slow Link detection mechanism in your Default Domain Policy

have a look here

http://technet2.microsoft.com/windowsserver/en/library/88586664-6a14-479f-8b10-8986020339931033.mspx?mfr=true

cheers

Dave

annie
Cisco Employee
Cisco Employee

Hi Craig - did you try http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a008081e621.shtml. I've ran into this issue before when dealing with NetBios traffic (shared folders across an NT Domain for instance) but not with attributes. Hopefully this will still help you out.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: