Solved

NT domain trust across a cisco router

Posted on 2000-02-29
8
283 Views
Last Modified: 2013-12-23
I think this is probably a pretty straightforward problem, but I've failed to get it:
I have domains sam and smc separated by a cisco 2621.  smc has some resources that sam must use.  I've added helper-addresses for the broadcast channel and the pdc of the other side to each of my ports.  I've enabled directed-broadcast and added forward-protocol for the udp 137/138 that pass NetBIOS.  However, I still get the "unable to locate domain controller" when I set up the trust relationship.  Any ideas?
0
Comment
Question by:nherron
  • 4
  • 2
  • 2
8 Comments
 
LVL 2

Expert Comment

by:posivibe
ID: 2570465
Open up port 139 as well.
0
 
LVL 2

Expert Comment

by:posivibe
ID: 2570469
Here's the Qbase article for the whole story:

http://support.microsoft.com/support/kb/articles/Q179/4/42.ASP

Port 135 for RPC calls should be opened as well.  We just set up a similar network last week but didn't need 135 for our purpose.
0
 
LVL 23

Expert Comment

by:Tim Holman
ID: 2572918
Opening these ports will stuff up your browsing :

http://support.microsoft.com/support/kb/articles/Q135/4/64.asp?LNG=ENG&SA=ALLKB&FR=0

+if you use Cisco's IP helper, look at :

http://support.microsoft.com/support/kb/articles/Q190/9/30.ASP

You need the 139 nbsession port to establish a session to create the trust account.
0
Create the perfect environment for any meeting

You might have a modern environment with all sorts of high-tech equipment, but what makes it worthwhile is how you seamlessly bring together the presentation with audio, video and lighting. The ATEN Control System provides integrated control and system automation.

 

Accepted Solution

by:
scottriley earned 100 total points
ID: 2577130
Have you tried adding the details of the domain controller into the LMHOSTS files, this helps your local machines easily resolve the NETBIOS name.
Provided your machines have routes in place for the IP network of the domain controller then it can route for the IP in the usual way.

Not the most "spangly" way of doing things but should work for you.
0
 
LVL 2

Expert Comment

by:posivibe
ID: 2577252
nherron???? have you tried any of our suggestion?  is it fixed?
0
 
LVL 23

Expert Comment

by:Tim Holman
ID: 2579567
*gobsmacked*
0
 

Expert Comment

by:scottriley
ID: 2579574
Why Gobsmacked Tim?
0
 
LVL 2

Expert Comment

by:posivibe
ID: 2580251
I find that an interesting accepted answer because without port 139 you would be unable to create a trust.
0

Featured Post

What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A brief overview to explain gateways, default gateways and static routes OR NO - you CANNOT have two default gateways on the same server, PC or other Windows-based network device. In simple terms a gateway is formed when a computer such as a serv…
I'm a big fan of Windows' offline folder caching and have used it on my laptops for over a decade.  One thing I don't like about it, however, is how difficult Microsoft has made it for the cache to be moved out of the Windows folder.  Here's how to …
Although Jacob Bernoulli (1654-1705) has been credited as the creator of "Binomial Distribution Table", Gottfried Leibniz (1646-1716) did his dissertation on the subject in 1666; Leibniz you may recall is the co-inventor of "Calculus" and beat Isaac…
In a recent question (https://www.experts-exchange.com/questions/29004105/Run-AutoHotkey-script-directly-from-Notepad.html) here at Experts Exchange, a member asked how to run an AutoHotkey script (.AHK) directly from Notepad++ (aka NPP). This video…

740 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question