Solved

Site Link Bridge setup whith multiple sites

Posted on 2011-02-25
4
699 Views
Last Modified: 2012-05-11
If there's an Active Directory topology set up with VPN connected 5 sites, and the networks are NOT fully routed, I know I have to create Site Link Bridges manually.

My question is - do I just create ONE site bridge and add all 5 servers to the list - or do I have to create one for each SITE, and add the 4 other servers?
0
Comment
Question by:PilotGavin
  • 2
4 Comments
 
LVL 57

Expert Comment

by:Mike Kline
ID: 34981045
Site link bridges contain site links.

How are your site links set up

Do you have a hub site and then four site links between the remote sites and the hub?  

If those remote sites can't communicate then a site link bridge won't do much for you.  

Thanks
Mike                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                
0
 

Author Comment

by:PilotGavin
ID: 34981091
Exactly Mike. 4 sites connected indipendantly to our main site...

However, all the articles I've read say that this is excactly WHY you need to set up manual site links. For the reason that the 4 sites can't officially "see" each other.
0
 
LVL 57

Accepted Solution

by:
Mike Kline earned 500 total points
ID: 34981153
Yes you definitely need to setup site links.

So say HQ and four external sites

Site Link 1 = HQ to External1
Site Link 2 = HQ to External2
Site link 3 =  HQ to External3

....and so on.

What I was talking about site link bridges.


Thanks

Mike
0
 
LVL 58

Expert Comment

by:tigermatt
ID: 34981464
Just to add to what Mike has said (hi Mike!), I presume that if your network is not fully routed, you've disabled "Bridge all site links"?

Might be pointing out the obvious but you could have issues if that one isn't disabled.

Of course, as Mike was saying, if any parts of your network ARE fully routed, that's the time to throw a site link bridge in there to tell the KCC that's the case. When you disable the automated bridging of all links, AD will just work on the basis of talking to the sites mentioned explicitly in the site links and no clever transitive communication will go on. When you put a site link bridge in you restore the transitive nature of the links but only for those which are added into the bridge.

I didn't understand any of your spoke sites being able to talk to other spoke sites, in which case, as already mentioned, site link bridges aren't going to help.

If all sites talk back to the HQ and nowhere else just use site links and disable the bridging.

-Matt
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
active directory 1 40
VPN doubts 4 25
Secondary DC 3 14
Active Directory Problem 4 24
Many of us in IT utilize a combination of roaming profiles and folder redirection to ensure user information carries over from one workstation to another; in my environment, it was to enable virtualization without needing a separate desktop for each…
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

758 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now