Connecting two Windows 2000 forests together

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

From: smc2005 (smc2005_at_discussions.microsoft.com)
Date: 02/16/05 

Date: Wed, 16 Feb 2005 08:21:02 -0800

 Hi,

I'm the network admin at a school and we have just set up a test environment
with some old servers in a new active directory forest. Although the test lab
is on the same switch as the main network, it is is on a different VLAN with
a different IP address range. What I am trying to do is let users in the test
lab access the Internet via the ISA 2000 server in the main network.

I have set up a trust between my two forests (both Windows 2000 AD). The lab
trusts the main network and the main network has the labs network in its list
of domains trusted by itself. I set up the trusts through Active Directory
Domains and Trusts.

I have used the main network's WINS servers for the lab network.

The part I am having difficulty is allowing the lab users access to the ISA
server. When I try to add groups from the labs domain I can't. I think the
problem is DNS related. The main network has it's own DNS servers, as does
the labs network. My question is, after creating the trusts through Active
Directory Domains and Trusts what else do I need to do?

>From the DC in the lab AD I can ping the domain controllers on the main
network by IP address and host name. Ping by FQDN doesn't work. Could I maybe
use the DNS server from the main network as my secondary DNS server on my
servers/clients in the Lab network?

Any help would be much appreciated.

Thanks,
Steven.

Relevant Pages

  • Re: Fully parallel Scheme-based language w/ evaluator
    ... Windows Server 2003 and networks in simple - and irreverent - terms. ... If networking really is a big deal, ... Concepts and Terminology in Part I, and The Design and Deployment of Network ...
    (comp.lang.misc)
  • Re: Outgoing POP3 email missing/lost/not received
    ... Funny thing is that I have had this ISP for 8 years and it has always been ... It looks like when you last ran CEICW, you set the ISP's mail server to: ... Internet Connection Wizard. ... After the wizard completes, the following network connection ...
    (microsoft.public.windows.server.sbs)
  • Re: Logon Server Unavailable
    ... There are currently no logon servers available to service ... You use a office laptop to connect the office VPN, when you map a network ... you may receive this message: "This account is the ... The server is not configured for transactions"> "A domain controller for your domain could not be contacted" ...
    (microsoft.public.windows.server.general)
  • Re: Logon Server Unavailable
    ... There are currently no logon servers available to service ... You use a office laptop to connect the office VPN, when you map a network ... you may receive this message: "This account is the ... The server is not configured for transactions"> "A domain controller for your domain could not be contacted" ...
    (microsoft.public.windows.server.dns)
  • Re: Logon Server Unavailable
    ... There are currently no logon servers available to service ... You use a office laptop to connect the office VPN, when you map a network ... you may receive this message: "This account is the ... The server is not configured for transactions"> "A domain controller for your domain could not be contacted" ...
    (microsoft.public.windows.server.networking)