Solved

AD & DNS

Posted on 2004-08-30
3
127 Views
Last Modified: 2010-08-05
I am having a lot of trouble with Active Directory/DNS.  I have three subnets with two domains originally setup under NT4.  The first domain on subnet 1 was converted to Windows 2000 with Active Directory and DNS using two domain controllers. DC 1 is the Global Catalog server and DC2 is the Infrastructure Update Master.  Subnet 2 is at a remote site connected through a VPN router. This site has a DC (DC3) for servicing logon requests for their local users and simply supplies file services. This site belongs to the first domain.

Subnet 3 belongs to Domain #2.  I upgraded the DC (DC4) in the second domain and made it a child domain of Domain 1.

My questions are:
1.) Should the DC at the remote site (parent domain) and the DC on subnet 3 (child domain) each be GC servers?

2.)Should all the servers point to themselves as the Preferred DNS server?

3.) Are there any other special considerations for this type of environment?
0
Comment
Question by:GPScribner
  • 2
3 Comments
 
LVL 16

Accepted Solution

by:
JamesDS earned 500 total points
ID: 11931461
GPScribner

1. Yes, in your environment all remote DCs should be GCs

2. The manual says yes, but this has been known to lead to DNS island. I always point them to another DC/DNS as primary and themselves as secondary. This is a common solution to the DNS Island problem.

3. depends... consider bandwidth, the "importance" of remote users. how your subnets are configured in AD Sites and Services. We would need more information to give you a really good reply.

Cheers

JamesDS
0
 

Author Comment

by:GPScribner
ID: 11931622
James,
Thanks for the quick reply.
Another question:  Should i have seperate AD sites for my main location (domain 1), my remote site (domain 1) and domain 2?  Right now I do (Site 1, Site 2 (remote site) Site 3 (second domain)). I setup the 3 subnets and assigned them to the corresponding AD sites?  
Should the remote network be under Site 1 since it belongs to the same domain? Am I all wet on this?

There are not of users at our remote site but they are important.
Thanks,
Greg
0
 
LVL 16

Expert Comment

by:JamesDS
ID: 11935469
Greg

Yup, seperate subnets, otherwise your users will logon to a random DC, not the one closest

Create new sites for each location and move your remote DCs into those sites.
Cheers

JamesDS
0

Featured Post

Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

Join & Write a Comment

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
What is Backup? Backup software creates one or more copies of the data on your digital devices in case your original data is lost or damaged. Different backup solutions protect different kinds of data and different combinations of devices. For e…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

760 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now