Topic: Ipsec Tunnel & 2 Wins sme boxes

[Adserg]

Hi All

Has anyone done this before?

Ok, 2 x servers joined together with an ipsec tunnel (5.6 U5)

Both servers run wins and the question here is how will workstations on both sides of the tunnel be able to see servers at there oposite ends.

I beleive that sme has a resolve order wins, lmhosts, bcast. Will both sme servers update each other dynamically or does this need manual implimentation. Would adding host names here be any use what so ever?

How would a SME server wins handle this? how will they talk?

Also am i going to have to manually add wins entrys on the workstation end if so will i point it locally or would i point it to the opposite wins server at the other end.

As this is already setup we cant browse to the other end. I know that most would just probably use an ipaddress\username, but to be able to browse is always usefull in my general opinion.

thanks all

Kindest regards

Adserg

[Adserg]

Ok after abit of digging i think this is right as a novice?

Server A    Server B

Both have different names but put in the same workgroup. All workstations log on to there respective NTserver's (servers in which the account resides) I think this means i would be able to disable the Workgroup and Domain Controller from yes to no.

Then i would be able to point a client pc on server A's network to use the wins server on B's network in network settings.

Hopefully this would allow me to browse the network, or do a search for a device but i should be able to a \servername\share to gain access.

You can get very usefull information from the following place www.samba.org

It looks like samba has hundreds of options open to it but sme is the configuration tool. The reason for this Sme give you the basics to allow you to run a Good solid server platform with all the unnecessary items removed. But if you know samba you can do more with it if you know how to pull the strings.

Any opinions appreciated and help still needed.

thank you

Adserg

[Adserg]

Can

Anyone help????

[WaRtS]

Hey Adserg

I think thats right, doesnt look like you get much luck on this forum, thats the third question you have put up here which has never been answerd....

[Rob Wellesley]

here's a start

http://mirror.contribs.org/smeserver/contribs/gzartman/HowToGuides/SME_DomainClientHowto.htm

you will need to learn about using wins across subnets - not something it does "out of the box"

rob

[WaRtS]

LOL..

Thanks Warts...I guess everyone is just busy.

Thank you Rob i will check that out.

Question: Do i need to have both servers set as a domain controllers or is this a red herring. (from my previous questions)

Tnx Rob

[Rob Wellesley]

> Question: Do i need to have both servers set as a domain
> controllers or is this a red herring. (from my previous
> questions)

Well, SME, as a gateway, is designed to be the central dude. The difficulty here is getting each server (on different subnets) to share their WINS records

start at /usr/share/doc/samba.x.x.x/docs

here you will find .txt and .html info on this sort of issue

try BROWSING*.txt and ROUTED*.txt

this is all pretty heavy networking stuff - If you get your head around it they give you an honorary MCSE  

[Adserg]

Hi Rob


By Golly Jimbo what alot to read.

Thank you very much Rob i am now of to turn my brain to mutton stew...It looks really usefull.

I really appreciate your help

Kindest Regards

Adserg

[Paul Schwartz]

Adserg,

Did you ever figure this issue out.  It's the same one I am having.

[Rob Wellesley]

Nope

[Mail size failure Update]

HA

Chaps this is what i did...sorry.

Site A:  192.9.202.? (Dhcp Enabled)

Site B:  192.9.202.? (Dhcp Enabled)

Obviously a tunnel between the two servers.

I put both servers in a workgroup called workgroup

Site A: pointed the workstations to the opposite wins server (SiteB).
Site A: can still see there own server also.

Site B: pointed the workstations to the opposite wins server (SiteA).
Site B: can still see there own server also.

Found that site A could see the other side but site B couldnt? however used lmhosts on site B this appeared to work and we have a happy bunny.

I can browse the network both sides. Now i dont know if this is the recommended way of doing it, i suppose not but it worked for me thanks to all you lot out there.

If anyone know another way to do this better can they give paul ahand. Let me know how you get on paul if i can help i will.

Adserg

[Guck Puppy]

Mail size failure Update wrote:
That's an amazing name you have there... Geek parents?

> Chaps this is what i did...sorry.
>
> Site A:  192.9.202.? (Dhcp Enabled)
> Site B:  192.9.202.? (Dhcp Enabled)
>
> Obviously a tunnel between the two servers.

The same subnet at both ends? That sounds like a recipie for IP address overlap, where you end up with machines with the same IP addresses (bad juju) - I mean, what are the IP addresses for the two gateways? I would guess they are BOTH 192.9.202.1!

Have you tried using 192.9.202.x and 192.9.201.x, say?

G

[Ipsec Tunnel & 2 Win]

Yup your right Guck thank you, a typing error sorry chaps.
but the rest still applies.

[Adserg]

Yup your right Guck thank you, a typing error sorry chaps.
but the rest still applies.