I have two pix 501 firewalls that are connected as a VPN. I cant see the other network in network neighborhood. When I try to add a pc to the domain from the remote side I get an error. In 2000 it is network path unavailable and it windows 98 I get The domain password you supplied is incorrect or access to the login server has been denied. I checked technet and had Cisco look at it and they say it is a Microsoft issue. I just dont believe that. I can ping it with no problems. Please help.
Try to investigate you maximum MTU with "ping -f -l 1300 remote_host" increasing packet size ( 1350, 1400, 1420, etc) until you get "fragmentation failed" error. After try to enforce MTU adjust on pix.
If you have active directory you must have internal, active directory integrated DNS server. Add this DNS server address as a first to all remote site hosts.
Dont forget to configure same domain name under "My Computer>Properties...>Network Identification>Properties>More...>Primary DNS suffix"
If you want to join Win95 configure Wins server on the server. Reconfigure server to use Wins by himself, Restart server (host are only registering names in wins during restart), configure client to use Wins.
On the same subnet there is usually no domain name resolution problems, because windows resolve names with NBT broadcasts. In you case broadcasts are blocked.
Please report on you success.
By default NTLM and more secure NTLMv2 autht are bouth allowed on win2000 domain controllers. But NTLM can be disabled for security.
Install active directory client for Win98 to enable NTLMv2 authentication. Client available somewhere on win2000 server CD.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...