Sonicwall VPN, Domain Controller Issues

Posted by durilai on Server Fault See other posts from Server Fault or by durilai
Published on 2009-12-19T04:04:35Z Indexed on 2010/04/08 17:03 UTC
Read the original article Hit count: 1565

Filed under:
|

I am trying to get the domain logon script to execute when I connect to VPN. I have a SonicWall 4060PRO, with the SonicOS Enhanced 4.2.0.0-10e. The VPN connects successfully, but the script does not execute. I am posting the log below, but I see two issues.

The first is the inability to connect to domain.

2009/12/18 19:49:53:457 Information XXX.XXX.XXX.XXX NetGetDCName failed: Could not find domain controller for this domain.

The second is the failure of the script.

2009/12/18 19:49:53:466 Warning XXX.XXX.XXX.XXX Failed to execute script file \DT-WIN7netlogondomain.bat, Last Error: The network name cannot be found..

I assume the second issue is caused because of the first, also on the second issue it seems to be trying to get the logon script from my local PC, not the server.

Finally, the DC can be pinged and reached by its computer name once the VPN is connected. The shares that the script is tring to map can be mapped manually.

Any help is appreciated.

2009/12/18 19:49:31:063 Information  The connection "GroupVPN_0006B1030980" has been enabled.
2009/12/18 19:49:32:223 Information XXX.XXX.XXX.XXX Starting ISAKMP phase 1 negotiation.
2009/12/18 19:49:32:289 Information XXX.XXX.XXX.XXX Starting aggressive mode phase 1 exchange.
2009/12/18 19:49:32:289 Information XXX.XXX.XXX.XXX NAT Detected: Local host is behind a NAT device.
2009/12/18 19:49:32:289 Information XXX.XXX.XXX.XXX The SA lifetime for phase 1 is 28800 seconds.
2009/12/18 19:49:32:289 Information XXX.XXX.XXX.XXX Phase 1 has completed.
2009/12/18 19:49:32:336 Information XXX.XXX.XXX.XXX Received XAuth request.
2009/12/18 19:49:32:336 Information XXX.XXX.XXX.XXX XAuth has requested a username but one has not yet been specified.
2009/12/18 19:49:32:336 Information XXX.XXX.XXX.XXX Sending phase 1 delete.
2009/12/18 19:49:32:336 Information XXX.XXX.XXX.XXX User authentication information is needed to complete the connection.
2009/12/18 19:49:32:393 Information  An incoming ISAKMP packet from XXX.XXX.XXX.XXX was ignored.
2009/12/18 19:49:36:962 Information XXX.XXX.XXX.XXX Starting ISAKMP phase 1 negotiation.
2009/12/18 19:49:37:036 Information XXX.XXX.XXX.XXX Starting aggressive mode phase 1 exchange.
2009/12/18 19:49:37:036 Information XXX.XXX.XXX.XXX NAT Detected: Local host is behind a NAT device.
2009/12/18 19:49:37:036 Information XXX.XXX.XXX.XXX The SA lifetime for phase 1 is 28800 seconds.
2009/12/18 19:49:37:036 Information XXX.XXX.XXX.XXX Phase 1 has completed.
2009/12/18 19:49:37:094 Information XXX.XXX.XXX.XXX Received XAuth request.
2009/12/18 19:49:37:100 Information XXX.XXX.XXX.XXX Sending XAuth reply.
2009/12/18 19:49:37:110 Information XXX.XXX.XXX.XXX Received initial contact notify.
2009/12/18 19:49:37:153 Information XXX.XXX.XXX.XXX Received XAuth status.
2009/12/18 19:49:37:154 Information XXX.XXX.XXX.XXX Sending XAuth acknowledgement.
2009/12/18 19:49:37:154 Information XXX.XXX.XXX.XXX User authentication has succeeded.
2009/12/18 19:49:37:247 Information XXX.XXX.XXX.XXX Received request for policy version.
2009/12/18 19:49:37:253 Information XXX.XXX.XXX.XXX Sending policy version reply.
2009/12/18 19:49:37:303 Information XXX.XXX.XXX.XXX Received policy change is not required.
2009/12/18 19:49:37:303 Information XXX.XXX.XXX.XXX Sending policy acknowledgement.
2009/12/18 19:49:37:303 Information XXX.XXX.XXX.XXX The configuration for the connection is up to date.
2009/12/18 19:49:37:377 Information XXX.XXX.XXX.XXX Starting ISAKMP phase 2 negotiation with 10.10.10.0/255.255.255.0:BOOTPC:BOOTPS:UDP.
2009/12/18 19:49:37:377 Information XXX.XXX.XXX.XXX Starting quick mode phase 2 exchange.
2009/12/18 19:49:37:472 Information XXX.XXX.XXX.XXX The SA lifetime for phase 2 is 28800 seconds.
2009/12/18 19:49:37:472 Information XXX.XXX.XXX.XXX Phase 2 with 10.10.10.0/255.255.255.0:BOOTPC:BOOTPS:UDP has completed.
2009/12/18 19:49:37:896 Information  Renewing IP address for the virtual interface (00-60-73-4C-3F-45).
2009/12/18 19:49:40:189 Information  The virtual interface has been added to the system with IP address 10.10.10.112.
2009/12/18 19:49:40:319 Information  The system ARP cache has been flushed.
2009/12/18 19:49:40:576 Information XXX.XXX.XXX.XXX NetWkstaUserGetInfo returned: user: Dustin, logon domain: DT-WIN7, logon server: DT-WIN7
2009/12/18 19:49:53:457 Information XXX.XXX.XXX.XXX NetGetDCName failed: Could not find domain controller for this domain.
2009/12/18 19:49:53:457 Information XXX.XXX.XXX.XXX calling NetUserGetInfo: Server: , User: Dustin, level: 3
2009/12/18 19:49:53:460 Information XXX.XXX.XXX.XXX NetUserGetInfo returned: home dir: , remote dir: , logon script:
2009/12/18 19:49:53:466 Warning XXX.XXX.XXX.XXX Failed to execute script file \DT-WIN7netlogondomain.bat, Last Error: The network name cannot be found..

© Server Fault or respective owner

Related posts about sonicwall

Related posts about vpn