Please help! WAN VPN problems

  • Thread starter Thread starter knucklebuck
  • Start date Start date
K

knucklebuck

I have a domain with the following scenario:

Main office has an ISA server running Win 2k as a member server
hosting the Internet connection and 2 internal Domain Controllers and
about 50 clients.

Remote office has 2 Domain controllers and about 30 clients. The
router is running NAT. One Domain Controller is running RRAS and
initiates a router to router VPN connection to the Main Office ISA
server for our WAN link.

Here are our problems:

The main office computer browse list doesn't have any of the remote
computers listed in My Network Places. Not even the Domain
Controllers. The Domain Master Browser is located here and is running
WINS. Pinging remote computers by name, IP, or putting their UNC path
in Windows Explorer all resolves perfectly on all Main Office Clients.
DNS in the Main Office has ALL clients listed.

In the remote office, one Domain Controller who is the master browser
has the ENTIRE corporate computer listing in it's My Network Places at
all times. The other Domain Controller, as well as ALL of the remote
clients will periodically have ALL computers listed in My Network
Places...then only the Main Office computers listed in My Network
Places.

It appears that the segment Master Browser in the Remote Office
maintains the complete list and periodically distributes that list
successfully to it's segment's clients. However, the Domain Master
Browsers never gets these updates over the WAN and when it sends out
it's Browse list containing only Main office computers, then it
replaces the remote office's browse list.

The final problem seems to be there is no file replication happening
between the 2 domain controllers in the remote office. Here is the
error from the Remote office Master Browser Domain Controller:

Event Type: Warning
Event Source: NtFrs
Event Category: None
Event ID: 13508
Date: 10/9/2003
Time: 12:14:36 PM
User: N/A
Computer: xxxxxxxx1
Description:
The File Replication Service is having trouble enabling replication
from xxxxxx2 to xxxxxxx1RP for c:\winnt\sysvol\domain using the DNS
name xxxxxx2.xxxxx.xxxxxxx.xx. FRS will keep retrying.
Following are some of the reasons you would see this warning.

[1] FRS can not correctly resolve the DNS name
xxxxxx2.xxxxx.xxxxxxx.xx from this computer.
[2] FRS is not running on xxxxxx2.xxxxx.xxxxxxx.xx.
[3] The topology information in the Active Directory for this replica
has not yet replicated to all the Domain Controllers.

This event log message will appear once per connection, After the
problem is fixed you will see another event log message indicating
that the connection has been established.

I did delete the DNS entries given for the VPN adapters in DNS...but
these problems still persist. Other than these minor problems, all
other communication over the WAN performs very well. Exchange traffic,
file transfers, Terminal Services...all with little or no probs.

Any ideas....please?
 
trying to be helpful said:
What are the IP subnets for both the main and branch offices?

The main office: 192.168.1.1-192.168.1.255

The remote office: 192.168.81.1-192.168.81.255

Both sites have static routes pointing to the VPN adapter. Like I
said, the browse list and File replication are the two problems.

I "could" put a WINS server at the remote office, on the backup
segment browser, which is a DC, but replication over the WAN link may
bog down traffic.
 
The main office: 192.168.1.1-192.168.1.255

The remote office: 192.168.81.1-192.168.81.255

Both sites have static routes pointing to the VPN adapter. Like I
said, the browse list and File replication are the two problems.

I "could" put a WINS server at the remote office, on the backup
segment browser, which is a DC, but replication over the WAN link may
bog down traffic.

Anyone?
 
Back
Top