Re: AD over VPN with two subnets
- From: "Jorge Silva" <jorgesilva_pt@xxxxxxxxxxx>
- Date: Thu, 25 May 2006 14:27:31 +0100
any time...
--
I hop that helps
Good Luck
Jorge Silva
MCSA
Systems Administrator
"RandyH" <RHollaw@xxxxxxxxxxx> wrote in message
news:uE8VKw$fGHA.4464@xxxxxxxxxxxxxxxxxxxxxxx
Jorge!
Thank you for your help. Everything worked just as you described. I had
some Exch2003 replication issues for a little while, but they cleared
after awhile, and when I rebooted all my DCs other misc. error fixed
themselves.
Thanks again!
Randy
"Jorge Silva" <jorgesilva_pt@xxxxxxxxxxx> wrote in message
news:eoLyxEofGHA.2188@xxxxxxxxxxxxxxxxxxxxxxx
Hi
Are you trying to add additional DC to an existent domain?
Assuming that you are trying to add on your remote office an additional
DC to an Existent domain:
On the Main Office DC:
- Create a Site for the Branch Office and assign a respective subnet for
any existent Site (Active Directory Sites and Services).
- Make your DNS AD integrated, and make sure that replicates to all
servers in the Domain.
- Make sure that every domain controller has its DNS properties under NIC
configuration pointing to itself.
-You can run from command prompt (Dcdiag, and Netdiag) to check for any
error configuration before you promote the Branch Office DC.
- If you have any error solve them first.
On the Branch Office DC:
- Install DNS Service.
- Configure the DC DNS properties to point to the main office DC
IPAddress (This is a temporary configuration).
- Run Dcpromo.
- After the server has been promoted to additional DC in the existent
Domain, check if replication is working, you can use repadmin, replmon
from the support tools available on your Windows CD\Support Tools, or use
the Active Directory Sites and Services to force replication.
- If replication is working ok, them you already should have the DNS zone
replicated to your Branch DC, at this point configure the DC properties
to point to itself rather them pointing to the Main Office DC.
- Make sure that the clients only use the DNS server on their local
network.
--
I hop that helps
Good Luck
Jorge Silva
MCSA
Systems Administrator
"RandyH" <RHollaw@xxxxxxxxxxx> wrote in message
news:OB0D4ZmfGHA.4776@xxxxxxxxxxxxxxxxxxxxxxx
Jorge,
Here is the error I am getting.................
The following error occurred when DNS was queried for the service
location (SRV) resource record used to locate a domain controller for
domain company.com:
The error was: "DNS name does not exist."
(error code 0x0000232B RCODE_NAME_ERROR)
The query was for the SRV record for _ldap._tcp.dc._msdcs.company.com
Common causes of this error include the following:
- The DNS SRV records required to locate a domain controller for the
domain are not registered in DNS. These records are registered with a
DNS server automatically when a domain controller is added to a domain.
They are updated by the domain controller at set intervals. This
computer is configured to use DNS servers with following IP addresses:
127.0.0.1
- One or more of the following zones do not include delegation to its
child zone:
company.com
com
. (the root zone)
For information about correcting this problem, click Help.
"Jorge Silva" <jorgesilva_pt@xxxxxxxxxxx> wrote in message
news:%23HqgaukfGHA.4900@xxxxxxxxxxxxxxxxxxxxxxx
Hi
-If this domain is going to be a child domain of existent tree, then
don't forget to delegate the Dns zone on the Parent Domain.
- Make sure that every domain controller has its DNS properties under
NIC configuration pointing to itself. (If DC IP Address is 10.0.0.1
then Dns should be 10.0.0.1).
- Make sure that every DNS server can resolve all domains in the
forest. (Use Forwarding, Stub Zones or Secondary Zones).
- Make sure that all clients Only uses the local(s) Dns Server.
How Domain Controllers Are Located in Windows
http://support.microsoft.com/kb/247811/
DNS Conditional Forwarding in Windows Server 2003
http://www.windowsnetworking.com/articles_tutorials/DNS_Conditional_Forwarding_in_Windows_Server_2003.html
DNS Stub Zones in Windows Server 2003
http://www.windowsnetworking.com/articles_tutorials/DNS_Stub_Zones.html
How To Create a Child Domain in Active Directory and Delegate the DNS
Namespace to the Child Domain
http://support.microsoft.com/kb/255248/
--
I hop that helps
Good Luck
Jorge Silva
MCSA
Systems Administrator
"RandyH" <RHollaw@xxxxxxxxxxx> wrote in message
news:OntFtwdfGHA.5100@xxxxxxxxxxxxxxxxxxxxxxx
Just recently established a VPN connection from our corporate location
to a remote office with about 10 ppl.
Corporate office 10.x.x.x/24 - ADDNS
Remote office 192.168.x.x/24 - DNS
At the firewall I have allowed any and all traffic between 10.x.x.x/24
and 192.168.x.x/24.
Each location can ping resources at each others location, can browse
shares...etc...
I have a small server at the remote office that I want to run DCPROMO
on.
This small server is a workgroup server and already has DNS installed
for local lookups.
When I run DCPROMO on the small server, I am getting errors that the
ADDNS server cannot be found.
Do I need to go into AD Sites and Services before hand and set
something up?
Any tips/help is greatly appreciated.
TIA
Randy
.
- References:
- AD over VPN with two subnets
- From: RandyH
- Re: AD over VPN with two subnets
- From: Jorge Silva
- Re: AD over VPN with two subnets
- From: RandyH
- Re: AD over VPN with two subnets
- From: Jorge Silva
- Re: AD over VPN with two subnets
- From: RandyH
- AD over VPN with two subnets
- Prev by Date: Re: Reliable to rename a windwos 2003 Domain Controller?
- Next by Date: Re: Access Rights to See DACLs in ADAM
- Previous by thread: Re: AD over VPN with two subnets
- Next by thread: Re: Reliable to rename a windwos 2003 Domain Controller?
- Index(es):
Relevant Pages
|
