Our Windows Server 2003 machines in our DMZ are very slow to resolve SIDs when we look at the properties of a folder. It takes up to 3 minutes to resolve the domain user and group names in the security or sharing properties of folders. I have tried putting entries into the LMHOSTS file for the DC based on this MS article http://support.microsoft.com/kb/314108
with no luck. Our network guys say they don't see any traffic being blocked between the DMZ machines and the Domain Controller. Does anyone have any suggestions?