Very Computer

I am using a Toshiba Portege Tablet, attempting to
connect to our corporate network via the corporate VPN,
which is Contivity (Nortel Networks).  This is the
standard configuration in the company and works fine on
Win2k, Win98 and Win XP (non-tablet).  But it doesn't
work too well on the tablet.

Specifically, I have to put in the numeric IP address for
every resource (email account, calendar account, etc) as
the VPN/OS apparently cannot resolve resource "names".  
Unfortunately some emails contain named links (internal
resources again), and the email corporate address book is
a named resource that can't be changed in my client to
numeric -- thus many resources are unavailable to me via
VPN and they come with a nice delay while attempting to
resolve.

Contivity is configured as on other machines (sorry
burrito eater, your answer to an earlier post ain't
cuttint it here).

Any guidance?

Mike --
    Actually, your best bet is probably over on the
microsoft.public.windowsxp.work_remotely forum, since I do not believe it
has anything to do with it being a Tablet PC -- I was able to VPN in cleanly
with my TabletPC while I was in NYC for the launch, and later while I was up
in Redmond for meetings. In both cases, of course, I was using native
Windows VPN solutions. The issue is most likely who it thinks is the DNS
server, or possibly who it thinks the WINS server is (but it shouldn't need
or want WINS.) I'm betting that it isn't picking up the internal DNS server
when it logs in to the corporate network.

Now, for a simple workaround -- use Notepad to edit the file
%windir%\system32\drivers\etc\hosts and add IP addresses and names for those
internal resources you need.  This file has the format:

10.0.0.1    mygateway mygateway.mydomain.com    # My Comment on my gateway

where the number is of the format: www.xxx.yyy.zzz and is the IP address of
the resource, "mygateway" is the common name, and "mygateway.mydomain.com"
is the fully qualified domain name.

--
Please, all replies to the newsgroup.

Charlie Russel
Columnist, MVP and Associate Expert
Expert Zone -- http://www.microsoft.com/windowsxp/expertzone
------------------------------------------------------------

Quote:> I am using a Toshiba Portege Tablet, attempting to
> connect to our corporate network via the corporate VPN,
> which is Contivity (Nortel Networks).  This is the
> standard configuration in the company and works fine on
> Win2k, Win98 and Win XP (non-tablet).  But it doesn't
> work too well on the tablet.

> Specifically, I have to put in the numeric IP address for
> every resource (email account, calendar account, etc) as
> the VPN/OS apparently cannot resolve resource "names".
> Unfortunately some emails contain named links (internal
> resources again), and the email corporate address book is
> a named resource that can't be changed in my client to
> numeric -- thus many resources are unavailable to me via
> VPN and they come with a nice delay while attempting to
> resolve.

> Contivity is configured as on other machines (sorry
> burrito eater, your answer to an earlier post ain't
> cuttint it here).

> Any guidance?

Charlie,
  I think you're right about it not picking up the
internal DNS server when it logs in -- this seems to be
the case.  But I have to think its specific to the tablet
or XP-Tablet because we haven't had this problem with
other machines/os's including regular XP.

  May be unrelated, but the tablet also couldn't "see"
the shared drives on our internal LAN when directly
connected (on-site) w/o changing them from named to
numeric.  Again, this is the only machine/OS with this
issue.

  I'll try your suggestions and check the other ng.

Mike

Quote:>-----Original Message-----
>Mike --
>    Actually, your best bet is probably over on the
>microsoft.public.windowsxp.work_remotely forum, since I
do not believe it
>has anything to do with it being a Tablet PC -- I was

able to VPN in cleanly

Quote:>with my TabletPC while I was in NYC for the launch, and

later while I was up

Quote:>in Redmond for meetings. In both cases, of course, I was
using native
>Windows VPN solutions. The issue is most likely who it
thinks is the DNS
>server, or possibly who it thinks the WINS server is

(but it shouldn't need

Quote:>or want WINS.) I'm betting that it isn't picking up the

internal DNS server

Quote:>when it logs in to the corporate network.

>Now, for a simple workaround -- use Notepad to edit the
file
>%windir%\system32\drivers\etc\hosts and add IP addresses

and names for those

Quote:>internal resources you need.  This file has the format:

>10.0.0.1    mygateway mygateway.mydomain.com    # My

Comment on my gateway

Quote:

>where the number is of the format: www.xxx.yyy.zzz and

is the IP address of

Quote:>the resource, "mygateway" is the common name,

and "mygateway.mydomain.com"

Quote:>is the fully qualified domain name.

>--
>Please, all replies to the newsgroup.

>Charlie Russel
>Columnist, MVP and Associate Expert
>Expert Zone --

http://www.microsoft.com/windowsxp/expertzone

On Thu, 26 Dec 2002 08:27:39 +0000, the artist formerly known as Mike
proclaimed:

Quote:> I am using a Toshiba Portege Tablet, attempting to
> connect to our corporate network via the corporate VPN,
> which is Contivity (Nortel Networks).  This is the
> standard configuration in the company and works fine on
> Win2k, Win98 and Win XP (non-tablet).  But it doesn't
> work too well on the tablet.

> Specifically, I have to put in the numeric IP address for
> every resource (email account, calendar account, etc) as
> the VPN/OS apparently cannot resolve resource "names".  
> Unfortunately some emails contain named links (internal
> resources again), and the email corporate address book is
> a named resource that can't be changed in my client to
> numeric -- thus many resources are unavailable to me via
> VPN and they come with a nice delay while attempting to
> resolve.

> Contivity is configured as on other machines (sorry
> burrito eater, your answer to an earlier post ain't
> cuttint it here).

> Any guidance?

Eh, did you ask me a question?  I don't recall you doing so.  You need
split DNS if you wish to enable name resolution for your internal network
and have internet connectivity at the same time.  Alternatively, you can
be simply assigned your company's internal DNS servers, should they also
pass internet name resolution back out to their VPN clients.  Yet another
solution would be for your corporation to provide you with a hosts file for
your servers.  I don't know how your network is set up, so I can't provide
a solution.  My crystal ball is broken.

Here's a link to assist you:
http://www.tuxedo.org/~esr/faqs/smart-questions.html

--
One OS to rule them all, One Passport to find them,
DRM to bring them all and with the EULA bind them.

Quote:>-----Original Message-----
>On Thu, 26 Dec 2002 08:27:39 +0000, the artist formerly
known as Mike
>proclaimed:

>> I am using a Toshiba Portege Tablet, attempting to
>> connect to our corporate network via the corporate
VPN,
>> which is Contivity (Nortel Networks).  This is the
>> standard configuration in the company and works fine
on
>> Win2k, Win98 and Win XP (non-tablet).  But it doesn't
>> work too well on the tablet.

>> Specifically, I have to put in the numeric IP address
for
>> every resource (email account, calendar account, etc)
as
>> the VPN/OS apparently cannot resolve
resource "names".  
>> Unfortunately some emails contain named links
(internal
>> resources again), and the email corporate address book
is
>> a named resource that can't be changed in my client to
>> numeric -- thus many resources are unavailable to me
via
>> VPN and they come with a nice delay while attempting
to
>> resolve.

>> Contivity is configured as on other machines (sorry
>> burrito eater, your answer to an earlier post ain't
>> cuttint it here).

>> Any guidance?

>Eh, did you ask me a question?  I don't recall you doing
so.  You need
>split DNS if you wish to enable name resolution for your
internal network
>and have internet connectivity at the same time.  

Alternatively, you can

Quote:>be simply assigned your company's internal DNS servers,
should they also
>pass internet name resolution back out to their VPN

clients.  Yet another

Quote:>solution would be for your corporation to provide you

with a hosts file for

Quote:>your servers.  I don't know how your network is set up,
so I can't provide
>a solution.  My crystal ball is broken.

>Here's a link to assist you:
>http://www.tuxedo.org/~esr/faqs/smart-questions.html

>--
>One OS to rule them all, One Passport to find them,
>DRM to bring them all and with the EULA bind them.

>.

BW -- I was referring to an earlier VPN post in this NG
to which you had responeded.  Your memory is intact, I
hadn't posted on this topic myself previously.

I'm not trying to have both internal network and Internet
access at the same time.  That works fine from the
office, except for proxy and filter delays ;)

What I'm trying to do is connect to the office via VPN
using all the same stuff (clients, configurations, etc)
as we use for all other remote users (ie a reasonably
robust suite).  But for some reason only this tablet
fails to connect properly.  The VPN client makes its
connection fine, but the email client only sees its host
if I use the numeric IP instead of the name.  
Unfortunately this leaves out the corporate address book
which is kinda necessary for a lot of my email and is not
changeable in the client configuration.  I did implement
the "fix" Charlie suggested for my calendar client, and
it worked fine, so I'm trying to track down the other
hosts info.  Still don't know how I'll resolve the
network drive (lack of) access issues.

All this would be much easier if the IT group wanted to
cooperate.  But I've bought an "unsupported device"
(Tablet PC) and I'm working with the dreaded and hated
Microsoft product line.  Thus, I'm on my own.  When will
this holy war end?

So, I'll try your other suggestions as well.  None-the-
less, I'm mystified as to why these issues arise only on
this device, makes me suspect an XP "feature" or Tablet
issue as all other variables have remained constant.

Mike

http://www142.nortelnetworks.com/bvdoc/contivity/doc_pdf/311644E00.PDF

Is a link to the client side configuration document, Mike, if you don't
have it already.
--
One OS to rule them all, One Passport to find them,
DRM to bring them all and with the EULA bind them.

I see you've still got it!  Your memory isn't going anywhere.  In fact, you
sound almost sound slightly assimilated ;)

--
Terri Stratton
Microsoft MVP
Windows XP / Tablet PC
http://TheTabletPC.net
Associate Expert
http://microsoft.com/WindowsXP/expertzone/focuson/tabletpc.asp

Quote:> On Fri, 27 Dec 2002 07:55:12 +0000, the artist formerly known as Mike
> proclaimed:

> > BW -- I was referring to an earlier VPN post in this NG
> > to which you had responeded.  Your memory is intact, I
> > hadn't posted on this topic myself previously.

> Ok, I don't even remember said post.  My memory is going.  I was going to
> do some mental retraining exercises using my tablet pc to keep it fresh,
> but Terri can't get me one!

> > I'm not trying to have both internal network and Internet
> > access at the same time.  That works fine from the
> > office, except for proxy and filter delays ;)

> OK, I am not familiar with the particular VPN software you are using, but
> if you provide a link, I would be happy to do some research for you and
> see what I can find so I may be able to help better.  So, I'll try to help
> generally for now:

> The first thing you
> need to do is connect to your VPN.  Then post what the output of ipconfig
> /all is, particularly your entries for the DNS servers.

> > What I'm trying to do is connect to the office via VPN
> > using all the same stuff (clients, configurations, etc)
> > as we use for all other remote users (ie a reasonably
> > robust suite).  But for some reason only this tablet
> > fails to connect properly.  The VPN client makes its
> > connection fine, but the email client only sees its host
> > if I use the numeric IP instead of the name.

> Which is definitely a DNS issue, we just have to isolate it a little bit
> better to get you a resolution (hopefully).

> > Unfortunately this leaves out the corporate address book
> > which is kinda necessary for a lot of my email and is not
> > changeable in the client configuration.  I did implement
> > the "fix" Charlie suggested for my calendar client, and
> > it worked fine, so I'm trying to track down the other
> > hosts info.  Still don't know how I'll resolve the
> > network drive (lack of) access issues.

> Well, depends on how many network drives you are trying to connect to.  If
> it is only a handful, then the quick and dirty way is to chuck em in your
> hosts file.  I am not on a windows box at the monent, but it is in
> \%windir%\system32\drivers\etc\hosts I belive.  If you need to connect G:
> to \\server1\Mikes_share then just a put an entry in your hosts file
> similar to this once you know it's ip address:

> ip.address.of.server servers.full.name server

> example:
> 10.10.5.2 server1.corporate.com server1

> The syntax may be slightly different, just follow the examples in the
> comments section at the top of the file.

> There is also an lmhosts file where you should put a similar entry
> following the convention there. (don't know enough specifics about your
> network to be sure, but having it in both files isn't harmful).

> > All this would be much easier if the IT group wanted to
> > cooperate.  But I've bought an "unsupported device"
> > (Tablet PC) and I'm working with the dreaded and hated
> > Microsoft product line.  Thus, I'm on my own.  When will
> > this holy war end?

> Well, some IT groups are tarts.  And others get turned into tarts by being
> overburdened and understaffed by management.  I take it you installed the
> VPN client yourself, then?  They may have a customized version with
> specific configurations that they install, that you may not have on yours.

> > So, I'll try your other suggestions as well.  None-the-
> > less, I'm mystified as to why these issues arise only on
> > this device, makes me suspect an XP "feature" or Tablet
> > issue as all other variables have remained constant.

> It is hard to say without more information.  If the VPN client wasn't
> installed from the same location on each machine, there may be differences
> in them that are unrelated to the tablet, per se.  It could also be some
> quirkiness on the tablet that I am unaware of as you say - perhaps a
> conflict between your VPN software and the tablet PC's extras.

> A good place to take a peek is in your eventviewer and see if there are
> any conflicts, but I suspect the VPN software is working ok, it just isn't
> populating the internal DNS servers to your machine properly.

> --
> One OS to rule them all, One Passport to find them,
> DRM to bring them all and with the EULA bind them.

On Fri, 27 Dec 2002 07:55:12 +0000, the artist formerly known as Mike
proclaimed:

Quote:

> BW -- I was referring to an earlier VPN post in this NG
> to which you had responeded.  Your memory is intact, I
> hadn't posted on this topic myself previously.

Ok, I don't even remember said post.  My memory is going.  I was going to
do some mental retraining exercises using my tablet pc to keep it fresh,
but Terri can't get me one!

Quote:> I'm not trying to have both internal network and Internet
> access at the same time.  That works fine from the
> office, except for proxy and filter delays ;)

OK, I am not familiar with the particular VPN software you are using, but
if you provide a link, I would be happy to do some research for you and
see what I can find so I may be able to help better.  So, I'll try to help
generally for now:

The first thing you
need to do is connect to your VPN.  Then post what the output of ipconfig
/all is, particularly your entries for the DNS servers.

Quote:> What I'm trying to do is connect to the office via VPN
> using all the same stuff (clients, configurations, etc)
> as we use for all other remote users (ie a reasonably
> robust suite).  But for some reason only this tablet
> fails to connect properly.  The VPN client makes its
> connection fine, but the email client only sees its host
> if I use the numeric IP instead of the name.

Which is definitely a DNS issue, we just have to isolate it a little bit
better to get you a resolution (hopefully).

Quote:> Unfortunately this leaves out the corporate address book
> which is kinda necessary for a lot of my email and is not
> changeable in the client configuration.  I did implement
> the "fix" Charlie suggested for my calendar client, and
> it worked fine, so I'm trying to track down the other
> hosts info.  Still don't know how I'll resolve the
> network drive (lack of) access issues.

Well, depends on how many network drives you are trying to connect to.  If
it is only a handful, then the quick and dirty way is to chuck em in your
hosts file.  I am not on a windows box at the monent, but it is in
\%windir%\system32\drivers\etc\hosts I belive.  If you need to connect G:
to \\server1\Mikes_share then just a put an entry in your hosts file
similar to this once you know it's ip address:

ip.address.of.server    servers.full.name       server

example:
10.10.5.2       server1.corporate.com   server1

The syntax may be slightly different, just follow the examples in the
comments section at the top of the file.

There is also an lmhosts file where you should put a similar entry
following the convention there. (don't know enough specifics about your
network to be sure, but having it in both files isn't harmful).

Quote:> All this would be much easier if the IT group wanted to
> cooperate.  But I've bought an "unsupported device"
> (Tablet PC) and I'm working with the dreaded and hated
> Microsoft product line.  Thus, I'm on my own.  When will
> this holy war end?

Well, some IT groups are tarts.  And others get turned into tarts by being
overburdened and understaffed by management.  I take it you installed the
VPN client yourself, then?  They may have a customized version with
specific configurations that they install, that you may not have on yours.

Quote:

> So, I'll try your other suggestions as well.  None-the-
> less, I'm mystified as to why these issues arise only on
> this device, makes me suspect an XP "feature" or Tablet
> issue as all other variables have remained constant.

It is hard to say without more information.  If the VPN client wasn't
installed from the same location on each machine, there may be differences
in them that are unrelated to the tablet, per se.  It could also be some
quirkiness on the tablet that I am unaware of as you say - perhaps a
conflict between your VPN software and the tablet PC's extras.

A good place to take a peek is in your eventviewer and see if there are
any conflicts, but I suspect the VPN software is working ok, it just isn't
populating the internal DNS servers to your machine properly.

--
One OS to rule them all, One Passport to find them,
DRM to bring them all and with the EULA bind them.

Quote:>-----Original Message-----
>http://www142.nortelnetworks.com/bvdoc/contivity/doc_pdf/
311644E00.PDF

>Is a link to the client side configuration document,
Mike, if you don't
>have it already.
>--
>One OS to rule them all, One Passport to find them,
>DRM to bring them all and with the EULA bind them.

>.

BW et al:
Thanks for all the suggestions.  I had things working
well enough using the file changes you and Charlie
suggested, then I installed a wireless network router.  
Once that was complete I took the tabletpc off the
ethernet and switched on its wireless access, and voila,
now all connections via VPN work just like on my other
machines.  So we'll probably never know why it gave me
problems via the ethernet LAN (same LAN, now has a WAP),
and I'm not planning to reconnect via ethernet just to
experiment.
Go figure!
-Mike

Hi, Mike,

Did you have the wireless connection activated when trying to connect the
wired?  On my machine, I have to make sure the wireless isn't powered when
using the hard-wired LAN.

--
Terri Stratton
Microsoft MVP
Windows XP / Tablet PC
http://TheTabletPC.net
Associate Expert
http://microsoft.com/WindowsXP/expertzone/focuson/tabletpc.asp

Quote:

> >-----Original Message-----
> >http://www142.nortelnetworks.com/bvdoc/contivity/doc_pdf/
> 311644E00.PDF

> >Is a link to the client side configuration document,
> Mike, if you don't
> >have it already.
> >--
> >One OS to rule them all, One Passport to find them,
> >DRM to bring them all and with the EULA bind them.

> >.

> BW et al:
> Thanks for all the suggestions.  I had things working
> well enough using the file changes you and Charlie
> suggested, then I installed a wireless network router.
> Once that was complete I took the tabletpc off the
> ethernet and switched on its wireless access, and voila,
> now all connections via VPN work just like on my other
> machines.  So we'll probably never know why it gave me
> problems via the ethernet LAN (same LAN, now has a WAP),
> and I'm not planning to reconnect via ethernet just to
> experiment.
> Go figure!
> -Mike

Quote:> Did you have the wireless connection activated when trying to connect the
> wired?  On my machine, I have to make sure the wireless isn't powered when
> using the hard-wired LAN.

Just as a data point. I have no issues like this with my Toshiba tablet.
Everything works smoothly with wired even when I have a wireless connection
active at the same time.

Wes Hsu

Good to know it works with a Toshiba.  It doesn't with an Acer.

--
Terri Stratton
Microsoft MVP
Windows XP / Tablet PC
http://TheTabletPC.net
Associate Expert
http://microsoft.com/WindowsXP/expertzone/focuson/tabletpc.asp