I have seen this problem numerous times on the forums, but never a
definitive answer....

We are intermittently receiving 403-Forbidden: Access Denied because
you are not logged in messages by some of our users over the WAN. A
refresh of the websites will typically resolve the problem.

We have a trace of a sucessful browser session and one that fails. I
can not post the trace but here is a summary of what we see.

Software versions.
Bordermanager version:3.8.3
Netware version:5.1.7
Edirectory:87.3.7
Workstation OS: Windows XP SP1
Workstation Novell Client: 4.90 sp1


CASE A - Successful Browser - Session Trace
1) BM server shows connection from workstation going from Temporarily
authenticated to Logged in.
2) BM server does a resolve user object Name.
3) BM checks security equivalences.
4) BM server does a resolve name for user object.
5) BM checks for user login restrictions.
6) BM server responds to the workstation with OK, connection has
changed state.

Case B - Unsuccessful Browser - Session Trace.
1) BM server shows connection from workstation going from Temporarily
authenticated to Logged in.
Steps 2 to 6 do not occur.

We notice a UDP packet from the BM server to the workstation on port
3024 every second.


--
alex