Hi, I have a working FC1 ldap pdc using Samba 3.0 here at hq and a working FC1 ldap bdc that I'd like to place at a remote site. Everything works perfectly when on the same subnet, with no vpn. When I attempt to move the BDC to the remote site everything continues to work fine, I can see the traffic for user authentication and so on (the remote BDC refers to the main ldap server here) however, when I try to add a machine account to the domain from the remote site it fails saying it can't find the domain.. Here are the messages in /var/logm/messages: Apr 23 12:15:26 localhost nmbd[3734]: find_domain_master_name_query_fail: Apr 23 12:15:26 localhost nmbd[3734]: Unable to find the Domain Master Browser name API-DOMAIN<1b> for the workgroup API-DOMAIN. Apr 23 12:15:26 localhost nmbd[3734]: Unable to sync browse lists in this work group. Does anyone have any idea how to get this browse sync or domain_master_query to work across the vpn and or shorewall? (I have no shorewal errors, so I might just be a remote announce type issue) TIA, Chris _______________________________________________ TCLUG Mailing List - Minneapolis/St. Paul, Minnesota http://www.mn-linux.org tclug-list at mn-linux.org https://mailman.real-time.com/mailman/listinfo/tclug-list