Domain Trust via NAT
Posted on 2012-04-11
I need some advice pertaining on the windows 2008 AD - external domain-trust via NAT, DNS forwarding has been setup successfully from both sites, but can't seem to get the authentication working.
I have 2 site connect via point-to-point VPN:
Site A - AD Server IP 10.150.0.1
Site B - AD Server 10.10.0.1 (Original IP subnet)
Site B - AD Server 10.190.1.1 (NAT IP Subnet back to Site A)
P/S: The NAT only applied on Site B.
AD Server (Site A) able to ping NAT AD Server (Site B)
AD Server (Site B) able to ping AD Server (Site A)
AD server (Site B) able to ping domain-A.internal
AD server (Site A) can't ping domain-B.internal (somehow it's pinging actual IP 10.10.0.1 instead of NAT IP 10.190.1.1)