We have a standard hub and 2 spoke network consisting of 827's running NAT over a VPN. Everything appears fine, we can ping across the VPN etc, but what we are having trouble with is browsing NetBios names and hitting an SQL server on the other side of the link. We are relying totally on Windows networking, there is no WINS server or PDC. NAT is stopping NetBios forwarding as is well documented, but I need to know if there is a preferred method of broadcasting NetBios UDP across the VPN. We have tried IP fowarding and helper addresses but they have not worked. Is there a 3rd party forwarder or tunnelling option...or is there a UDP forwarding config we're missing? Any tips would be appreciated. Has anyone tried this setup successfully?
Dean, we had a very similar problem where all of Cisco's firewall products to date will not rewrite any SMB Packet contents. With MS browsing\WINS and NT Authentication LSA/RPC Local or Domain the devices real IP address is embedded in the SMB content.
If you are purely running MS Browsing across a VPN Tunnel with no NAT then make sure that type 20 propogation is enabled across all interfaces. This should allow the forward of netbios broadcasts which the MS Master browsers will require on each broadcast domain. Personaly I would not like to rely on MS Browsing as it is possible for delays of up to 60mins before non-existant devices are removed from the broadcast domains!
I think you're right Scott, type 20 refers specifically to IPX/NetBios propogation as far as I'm aware.
We have a local hosts file in the test machine we are using, and can ping the NetBios name. But we still can't browse to them. IT is as if the Master Browser isn't being propogated, I have heard that IP forwarding can break the Master Browser as it starts to receive broadcasts form different subnets.
We are pleased to announce availability of Beta software for 16.6.3.
16.6.3 will be the second rebuild on the 16.6 release train targeted
towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are
looking for early feedback from customers befor...
Introduction Featured Speakers Luis Espejel is the Telecommunications
Manager of IENova, an Oil & Gas company. Currently he works with Cisco
IOS® and Cisco IOS XE platforms, and NX to some extent. He has also
worked as a Senior Engineer with the Routing P...
In this session you can learn more about Layer 3 multicast and the best
practices to identify possible threats and take security measures. It
provides an overview of basic multicast, the best security practices for
use of this technology, and recommendati...