I have two sites on two seperate internal domains connected via an IPSEC VPN tunnel. One side, siteb.local (one Win2K and one Win2K3 DC), has a Netscreen 5GT, and the other side, sitea.local (2 Win2K3 DCs), has a Fortigate 80C. The tunnels between the sites are up and I can ping and rdp by IP both ways no problem. But I am not able to get DNS to work. I have added a stub domain on either side but it will not update. I have also tried DNS forwarders but that isn't working either. What am I missing???