Question : Gateway/Gateway VPN and SBS 2K3

This is a multi-faceted question.  We're setting up a site-to-site VPN using Netgear FVS318 and FVS 114's.  Each site has its own SBS server and domain, and after further research it appears that a trust can't be set up between the two domains, therefore this leads to issue #1.  Is there a workaround?  
We've already established a connection between the two sites and can ping between the subnets (192.168/24 and 192.168.23/24).  We can see both domains using MS network/entire network/windows network, but can't connect or see any machines inside either LAN, and therefore this is issue #2.  
To troubleshoot, we attempted to join a notebook to one of the domains (and which was not a domain member in the other domain), and received the following error: "A domain controller for the following domain cound not be contacted"...We opened ports 53 and 88/both, to no avail.  We've tried a few solutions on other forums, one which suggested to change the IP addy's on the notebook NIC to point to the remote DC for DNS, also to enable NetBios over IP, and finally point to the remote WINs server so to join the remote domain.  Still no luck.  The routers are supposed to provide "VPN Passthrough", so we thought a complex configuration wasn't necessary.  
The computer person in the remote site has set up a similar VPN using Netgear routers and successfully connected workgroups with no problem, so we suspect the issue relates to the domain environment.
This is not an "urgent" issue because we're using a temporary workaround with RDP, but it's nagging both of us...

Answer : Gateway/Gateway VPN and SBS 2K3

zoon06, GPO's not being applied are usually a result of the network connection not being complete before GPO's are to be applied, basically a race condition exists between different services. The two common solutions I am familiar with that may fix this are:
Computer Configuration | Administrative Templates | System | Group Policy | Group policy Slow Link Detection
and the other:
Computer Configuration | Administrative Templates | System | Logon | Always wait for the network at computer startup and logon
There are several other policies relating to slow links and user profiles you may want to have a look at, but I haven't heard of others using them to resolve. They are all located in:
Computer Configuration | Administrative Templates | System | User Profiles | ...............

--Rob
Random Solutions  
 
programming4us programming4us