One thing to try, creating a host record on the BDC pointing the Main Server Name to it's IP. Then it should direct the request.... Not an expert on Netbios though, so maybe not? ============================ Daniel Rysztak, CCNP http://www.druids-grove.net/ -----Original Message----- From: tclug-list-bounces at mn-linux.org [mailto:tclug-list-bounces at mn-linux.org]On Behalf Of Christopher Sent: Friday, April 23, 2004 12:27 PM To: 'TCLUG Mailing List' Subject: [TCLUG] Netbios over openvpn Hi, I have a working FC1 ldap pdc using Samba 3.0 here at hq and a working FC1 ldap bdc that I'd like to place at a remote site. Everything works perfectly when on the same subnet, with no vpn. When I attempt to move the BDC to the remote site everything continues to work fine, I can see the traffic for user authentication and so on (the remote BDC refers to the main ldap server here) however, when I try to add a machine account to the domain from the remote site it fails saying it can't find the domain.. Here are the messages in /var/logm/messages: Apr 23 12:15:26 localhost nmbd[3734]: find_domain_master_name_query_fail: Apr 23 12:15:26 localhost nmbd[3734]: Unable to find the Domain Master Browser name API-DOMAIN<1b> for the workgroup API-DOMAIN. Apr 23 12:15:26 localhost nmbd[3734]: Unable to sync browse lists in this work group. Does anyone have any idea how to get this browse sync or domain_master_query to work across the vpn and or shorewall? (I have no shorewal errors, so I might just be a remote announce type issue) TIA, Chris _______________________________________________ TCLUG Mailing List - Minneapolis/St. Paul, Minnesota http://www.mn-linux.org tclug-list at mn-linux.org https://mailman.real-time.com/mailman/listinfo/tclug-list _______________________________________________ TCLUG Mailing List - Minneapolis/St. Paul, Minnesota http://www.mn-linux.org tclug-list at mn-linux.org https://mailman.real-time.com/mailman/listinfo/tclug-list