Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

VPN - Windows group policy problem

Hi, we are experiencing problems with our VPN sites.. we are using cisco 800 series routers on remote sites all with IPSEC VPN configured.. all sites connect back to a central site and terminate on a cisco pix 515. The problem is that VPN clients are not getting any group policy settings when logging into windows. Group policy works fine for NON VPN sites. Can anyone shed any reason or fix for this.. I read somewhere that this could be something to do with fragmented packets.. but for the life of me I dont know where to start..

thanks

Craig.

3 REPLIES
Bronze

Re: VPN - Windows group policy problem

Refer to the document "Most Common L2L and Remote Access IPSec VPN Troubleshooting Solutions" In that, go through the section Problem - Remote Access Users Connect to VPN and Have No Other Access to Resources

http://www.cisco.com/en/US/products/ps6120/products_tech_note09186a00807e0aca.shtml#topic-ra

New Member

Re: VPN - Windows group policy problem

It could be the Slow Link detection mechanism in your Default Domain Policy

have a look here

http://technet2.microsoft.com/windowsserver/en/library/88586664-6a14-479f-8b10-8986020339931033.mspx?mfr=true

cheers

Dave

Cisco Employee

Re: VPN - Windows group policy problem

Hi Craig - did you try http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a008081e621.shtml. I've ran into this issue before when dealing with NetBios traffic (shared folders across an NT Domain for instance) but not with attributes. Hopefully this will still help you out.

262
Views
0
Helpful
3
Replies