Office Mode and ipassignment.conf

[jcamillo]

I have a problem with using office mode. I would like my users to get different IP information. For example I want some users to only get an IP and not DNS and some users to get an IP address and DNS.

I have been trying to use the file ipassignment.conf located on fw mod $FWDIR/conf directory. I have been editing the file with VI and when I run the verifier it checks and there are no errors. when I logon to SC I dont recieve the IP address I specified in the IPassignment file.

I have tried different formats and also rebooting, cprestarting, pushing policy and still no luck.

I also checked om_prevent_ippool_nat_for_users in objects C to true.

I am currently running on my mangement R60 on win 2003 and FW module is running R55 on Nokia 3.8

[simon]

Hi jcamillo,

make sure you define more specific entries on top of your generic settings.

For example:
Line #1: cpmodule addr 192.168.1.100 wins=(), dns=() JohnDoe
Line #2: cpmodule net 192.168.1.0/27 wins=(192.168.1.200), dns=(192.168.1.200) VpnUserGroup

JohnDoe may be a member of VpnUserGroup or not, in this case it doesn't matter because the more specific entry is specified above the generic entry. If JohnDoe ist not a member of VpnUserGroup you could also specify it below.
If no entry matches (no membership in VpnUserGroup, not user JohnDoe) the module's object configuration defined on your SmartCenter Server should match.

You can also use vpn ipafile_check ipassignment.conf detail for more detailed output.

Hope that helps.

Regards,
Simon