Solved

Joining a Windows 2003 domains throught a site to site VPN

Posted on 2008-10-05
4
210 Views
Last Modified: 2010-03-17
I have jiust setup a site-to-site VPN using a Watchguard XCore 550 and a Watchguard Edge X10e.
Site A: Server/Domain Controller/DNS (static IP)
Site B: workstations with Win XP Pro (dynamic IP)

I have setup the PCs with the following network settings:
DNS 1: Ip of the Domain Controller

When I try to join the domain it returns a DNS error.

What should I do? I have tried to ping the dns using : servername.domain.local and it respons correctly.

Help me it's very urgent!
0
Comment
Question by:ssardella
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 

Author Comment

by:ssardella
ID: 22647200
I forgot:

Site A: 192.168.19.0/24
Site B: 192.168.21.0/24

I have added to the DNS server the A record of the workstations at site B and added the PRT records for that subnet..
0
 
LVL 4

Expert Comment

by:lscapa
ID: 22649425
It might be a MTU packet size issue. Whats the largest packet size you can ping through?
ping HOST -l 1472 -f
This will keep it from fragmenting the packet. You hopefully will see something like:
"Packet needs to be fragmented but DF set."
 
If so you'll need to reconfigure your routers to handle at least a 1500kb packet if not more.
0
 
LVL 3

Accepted Solution

by:
tismetoo earned 500 total points
ID: 22650430
Can you post the exact DNS error. Also when you are trying to connect to the domain, are you trying to resolve the Netbios name ie DOMAIN or the DNS name ie domain.local? Try to connect to the domain using the FQDN - domain.local as specified on the DNS server on your DC.

You also need other ports open between the 2 sites, other than DNS. Do you have policies blocking ports between the sites or is it an open link, allowing any traffic?
0
 

Author Comment

by:ssardella
ID: 22655262
I made it :)

I was just very tired and had not noticed that the firewall at the other end was blocking DNS requests...sorry guys...anyhow thanks for the help!
0

Featured Post

Ransomware: The New Cyber Threat & How to Stop It

This infographic explains ransomware, type of malware that blocks access to your files or your systems and holds them hostage until a ransom is paid. It also examines the different types of ransomware and explains what you can do to thwart this sinister online threat.  

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Always backup Domain, SYSVOL etc.using processes according to Microsoft Best Practices. This is meant as a disaster recovery process for small environments that did not implement backup processes and did not run a secondary domain controller that ne…
Did you know that more than 4 billion data records have been recorded as lost or stolen since 2013? It was a staggering number brought to our attention during last week’s ManageEngine webinar, where attendees received a comprehensive look at the ma…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

737 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question