Fun AD trouble with multiple sites
From: Chris K (AnAmoeba_at_online.nospam)
Date: 09/29/04
- Next message: Harry Potter: "clarify few points in windbg Please.."
- Previous message: Alun Jones [MSFT]: "Re: Push-bit in TCP-Header"
- Next in thread: Rhett Gong [MSFT]: "RE: Fun AD trouble with multiple sites"
- Reply: Rhett Gong [MSFT]: "RE: Fun AD trouble with multiple sites"
- Messages sorted by: [ date ] [ thread ]
Date: Tue, 28 Sep 2004 17:51:01 -0700
Howdy!
Have two sites connected via T1 VPNs; all private IP addresses. However,
the VPNs terminate OUTSIDE the ISA or PIX on each LAN, so we're mapping
"external" private IPs to "internal" private IPs as follws:
Site A: Internal PC addresses 192.168.100.0/24 - mapped to "external"
addresses of 192.168.101.0/24 through ISA
Site B: Internal 192.168.150.0/24 - mapped to "external" addresses of
192.168.151.0/24 through Pix
Everyone can talk to each other, share files, etc provided we maintain split
DNS systems - with each site pointing to the "external" IPs of the other.
The problem is, Active Directory doesnt like it; each machine registers its
LOCAL PRIVATE ADDRESS in DNS - and accordingly, cant be contacted by machines
at the other site.
Should we just maintain split DNS's that include all the AD information?
Possible, but seems nasty.
Any suggestions?
Thanks!
Chris
- Next message: Harry Potter: "clarify few points in windbg Please.."
- Previous message: Alun Jones [MSFT]: "Re: Push-bit in TCP-Header"
- Next in thread: Rhett Gong [MSFT]: "RE: Fun AD trouble with multiple sites"
- Reply: Rhett Gong [MSFT]: "RE: Fun AD trouble with multiple sites"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
|
