Re: W2K3 Domain Trusts - Domains are separated by FW
- From: "Robert Bollinger" <robert@xxxxxxxxxxxxxxxx>
- Date: Mon, 3 Jul 2006 18:05:18 -0700
As obviously stipud of an idea as this is... have you tried dmz'ing the
DC's? Literally for 30 sec's?
To see if its a firewall issue?
Also what ports do you have open through the firewall? 389, and 3268 if i am
i remember? (Thre may be more).
Also on a test environment i have established a trust and gotten around the
DNS issues by simply pointing the respective dns serevrs in each others
NIC's - just while i am establishing the trust.
ALso to avoid the bypass the firewall issues why not create a HW VPN between
the two sites? Using say to sonicwalls or (if you dont have $12-1500.00) use
2 ipcop linux boxes.
In my experience "The domainx" issue is always a dns issue, i have seen that
many many many
times and yes dns was to blame.
Robert
"Jeff" <Jeff@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:1D980AAB-B720-4C0E-B269-F53DEF813CE9@xxxxxxxxxxxxxxxx
Hello,
We are trying to setup a trust between 2 W2K3 domains in different
forests.
The catch is, the forests (and obviously the domains) are divided by a
firewall. We've opened all neccessary ports on the firewall, and we've
verified that routing and NATing is working correctly (the domain
controllers
in the 2 forests can ping each other).
However, ever time we try to create the trust, we get a "Domain X is not a
valid windows domain".
We've tried adding DNS records for the domains, but the trust still fails
with the above error.
Anyone have any ideas?
Thanks!
Jeff
.
- Prev by Date: Edit MS Active Directory
- Next by Date: RE: mapped drives and desktop shortcut all a group of users
- Previous by thread: Edit MS Active Directory
- Next by thread: Re: W2K3 Domain Trusts - Domains are separated by FW
- Index(es):
Relevant Pages
|
