Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Question re conditional forwarder difference between 2003 and 2008 R2

Posted on 2010-09-06
1
Medium Priority
?
1,004 Views
Last Modified: 2012-06-27
I may not have a real problem, but need some validation.

In a test environment, I'm trying to set up a forest to forest trust between a 2008 R2 forest and a 2003 SP2 forest. The 2008R2 forest is abc.local, and the 2003 forest is def.local. Both sites are connected via a VPN with the Windows firewall disabled on both ends. From both sides, I can ping the respective DNS servers by IP address.

On the 2003 DNS server/ DC, I can cleanly create a conditonal forwarder to the 2008R2 forest. Specifically, in the Forwarders tab of the 2003 DC,  I typed abc.local and gave it an address of 192.168.33.22. From the 2003 box, I can now ping the domain and all of the server names inside abc.local.

On the 2008 box, under the Conditional Forwarders folder, I can add the IP address of the def.local server, but only its NETBIOS name (i.e., 2003SERVER1). Unlike 2003, I can't add the FQDN or the domain name.

When I click GO, it creates the object under conditonal forwarders and assigns the correct domain name. I can now ping def.local and the server names in def.local from the abc.local domain.

So two questions:
1. Is this the proper configuration for the 2008 server?
2. How did Windows figure out that the 2003SERVER1 was authoritative for the def.local domain?

Thanks.

0
Comment
Question by:ovidbailey
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 

Accepted Solution

by:
ovidbailey earned 0 total points
ID: 33614212
Seems to be working fine, must be the proper configuration.
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A hard and fast method for reducing Active Directory Administrators members.
How to deal with a specific error when using the Enable-RemoteMailbox cmdlet to create a mailbox in the cloud-based service, for an existing user in an on-premises Active Directory.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses

670 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question