Re: DNS related issue in a 2003 trust environment

Read inline please.

In news:3226C83E-B050-408F-8AE1-D4CC03379794@xxxxxxxxxxxxx,
Matteo <Matteo@xxxxxxxxxxxxxxxxxxxxxxxxx> typed:
Dear all,

I am facing with this issue, the envirnoment is:

into the Intranet we have a 2003 domain at the Interim level that is
trusted in a one-way trust relationship by the extranet domain
(Windows Server 2003 functional level) that is located into the dmz.

Actually each time I have to add an Intranet account into Extranet
groups the DSA.msc snap in is waiting at least 2 minutes after
recognizing the account, it seems that wait a reponse from something
that doesn't arrive and after the timeout show me informations that
found.

Cheking with the firewall log that divide Lan from DMZ I don't have
nothing blocked between the DC of the extranet and the DC of the
INTRANET, any idea?



Another strange thing happen connecting via RDP to the Extranet DC
with a Intranet user account, It takes at least 5 minutes to login
also if it's not the first time (I mean it has to create the profile,
and apply personal settings and so on)



I am thinking in a DNS problem but I cannot realize what is doing
this.


It could be DNS, but you did not tell us how you have DNS set up.
Where are the DNS zones hosted at for these two domains?
How is the extranet DC finding the intranet DC? (Stub zone, Secondary zone,
or Conditional Forwarder)


--
Best regards,
Kevin D. Goodknecht Sr. [MVP]
Hope This Helps

===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
http://support.wftx.us/
http://message.wftx.us/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
===================================


.

Relevant Pages

  • Re: DNS related issue in a 2003 trust environment
    ... I fix ports into registry as you wrote, I used port 1025 tcp for both keys ... and I have open ports from extranet dc to intranet dcs into the firewall, ... intranet user account take more than 5 minutes... ... I have two dc that both of them are dns server too: ...
    (microsoft.public.windows.server.dns)
  • Re: DNS related issue in a 2003 trust environment
    ... No I did not set fixed ports changing registry keys, ... the intranet dcs have all the ports open going to extranet into the firewall, ... I have two dc that both of them are dns server too: ...
    (microsoft.public.windows.server.dns)
  • Re: DNS related issue in a 2003 trust environment
    ... Extranet DC --> Intranet DC1 ... I have two dc that both of them are dns server too: ... the zone is active directory integrated, and include Forward lookup zone and ...
    (microsoft.public.windows.server.dns)
  • Re: DNS related issue in a 2003 trust environment
    ... Have you set fixed ports for RPC on your DC's as below: ... can you manually run LDAP query to internal DC from the extranet DC ... Extranet DC --> Intranet DC1 ... I have two dc that both of them are dns server too: ...
    (microsoft.public.windows.server.dns)
  • Re: DNS related issue in a 2003 trust environment
    ... I checked what the firewall block during an Intranet user addition ... between Extranet DC and both of Intranet DC ... I have two dc that both of them are dns server too: ... the zone is active directory integrated, and include Forward lookup zone and ...
    (microsoft.public.windows.server.dns)
Loading