Solved

LAN to WAN

Posted on 2004-04-19
11
631 Views
Last Modified: 2010-03-18
I have a question on how to link two LANs together.  On one LAN (Small network) we have one Domain Controller; on the other LAN (Main network) I have a Domain Controller and a Exchange Server.  We have created a tunnel connection between both sites with two routers.  What’s the best way to configure the servers so I can have everyone on the same Domain? or tree?  I don’t want people using POP3 or OWA anymore.  
0
Comment
Question by:ranpage
  • 5
  • 4
  • 2
11 Comments
 
LVL 16

Expert Comment

by:JammyPak
ID: 10862678
what addressing scheme are you using in the two sites?

if you have a tunnel that is acting as a bridge, then you could use the same logical network address for both sites. Otherwise, you'll need to have different logical network addresses for each site, and then configure routing to pass packets from one site to the other. As long as there's no firewall or access control lists limiting which packet types can go through the tunnel, then there will be no reason why someone from site a can't join a domain in site b. You will likely have name resolution problems, so you should set up a common DNS or WINS server for both sites to use - or , setup replication for WINS and secondary zones for DNS. This will be necessary for machines in one site to locate machines in the other based on name (since broadcasts may not be going through the tunnel)
0
 

Expert Comment

by:sstephensnet
ID: 10864017
Since the 2 domains were created separate you will have to demote one controler and then promote it to be a DC again once you have established connectivity between the two.  Once you have done this you can set up the New DC to be a Active directory DNS server for the domain.  It will then mirror  the DNS zone for the original domain, just as jammy said would be needed.  Once all of this is done you could actually set up a Site in Win2000 so that computers in one location would not cross the WAN link to authinticate with the DC.
0
 

Author Comment

by:ranpage
ID: 10865212
Could you give me more detail on how to demote and promote the servers?
0
 

Assisted Solution

by:sstephensnet
sstephensnet earned 150 total points
ID: 10867716
0
 

Author Comment

by:ranpage
ID: 10868266
what type of server will the server be how shall I can configure it.  Replication Partner? also yes we are windows 2000 server
0
Superior storage. Superior surveillance.

WD Purple drives are built for 24/7, always-on, high-definition security systems. With support for up to 8 hard drives and 32 cameras, WD Purple drives are optimized for surveillance.

 
LVL 16

Expert Comment

by:JammyPak
ID: 10868367
Ah..I missed the point that you had 2 domains as well....
When you uninstall Active Directory (using dcpromo), then your server is just a 'member server'....after you will reinstall Active Directory (using dcpromo again) as an additional domain controller in the existing domain. You'll have to have DNS working before you'll be able to do this.
0
 
LVL 16

Expert Comment

by:JammyPak
ID: 10868901
Ah...something I thought of....

I don't know if you've planned this all out, but you may not want to combine the two sites into one domain. You could leave the domains separate and setup trusts or something....the benefit being less intrusion on the client.

If you combine into one domain, then all pc's that are members of the domain that's disappearing will have to be taken out of their existing domain, and put into the other one. All user accounts will also have to be created in the other domain. Plus, when user's login to their PC's again, it will create a brand new user profile for them...so you'll have to copy their profile if  they want to have the same desktop, My Documents, etc.

Just a heads up really....
0
 

Author Comment

by:ranpage
ID: 10870705
If I were to have one domain how who I configure the AD during the install?
0
 
LVL 16

Expert Comment

by:JammyPak
ID: 10870842
this is what sstephensnet was referring to -

to combine the domains, you demote your one domain controller (which blows away one of your domains) and then repromote it to a domain controller of the other domain. both of these actions are done using dcpromo.exe

now you'll only have one domain, but everyone in the other site will be 'domainless' untill you re-add them to the new domain.
0
 

Author Comment

by:ranpage
ID: 10877605
I understand that I have to demote and promote. but when install active directory what DCpromo scenario should I use to configure the new server?  ALso is it ok if the neworks have different network nodes i.e. 192.168.0 and 192.168.2  ?
0
 
LVL 16

Accepted Solution

by:
JammyPak earned 200 total points
ID: 10877755
"is it ok if the neworks have different network nodes i.e. 192.168.0 and 192.168.2  ?"

this depends...

if the two sites are acting as separate segments, then they must use separate network addresses - however, this means that you'll have to setup routing to get to the other site.

if the two sites are connected in bridge mode, then they are acting as one segment, and they must use the same network address

also, i'm assuming that your subnet mask is 255.255.255.0

"when install active directory what DCpromo scenario should I use:

what are the options? basically, you want to install it as an additional domain controller in an existing domain...I don't remember what "scenarios" you have to choose from
0

Featured Post

Control application downtime with dependency maps

Visualize the interdependencies between application components better with Applications Manager's automated application discovery and dependency mapping feature. Resolve performance issues faster by quickly isolating problematic components.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
NFS vs, iSCSI throughput ? 20 119
Select which programs use which internet connection 15 68
Communication with an active RFID 7 63
Error 0X800704C8 - Plex App 2 35
Nslookup is a command line driven utility supplied as part of most Windows operating systems that can reveal information related to domain names and the Internet Protocol (IP) addresses associated with them. In simple terms, it is a tool that can …
I'm a big fan of Windows' offline folder caching and have used it on my laptops for over a decade.  One thing I don't like about it, however, is how difficult Microsoft has made it for the cache to be moved out of the Windows folder.  Here's how to …
This video shows how to remove a single email address from the Outlook 2010 Auto Suggestion memory. NOTE: For Outlook 2016 and 2013 perform the exact same steps. Open a new email: Click the New email button in Outlook. Start typing the address: …
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

914 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now