peacefullee
asked on
Domain Trust via NAT
Dear Expert,
I need some advice pertaining on the windows 2008 AD - external domain-trust via NAT, DNS forwarding has been setup successfully from both sites, but can't seem to get the authentication working.
I have 2 site connect via point-to-point VPN:
Site A - AD Server IP 10.150.0.1
Domain: domain-A.internal
Site B - AD Server 10.10.0.1 (Original IP subnet)
Site B - AD Server 10.190.1.1 (NAT IP Subnet back to Site A)
Domain: domain-B.internal
P/S: The NAT only applied on Site B.
Test result:
AD Server (Site A) able to ping NAT AD Server (Site B)
AD Server (Site B) able to ping AD Server (Site A)
AD server (Site B) able to ping domain-A.internal
AD server (Site A) can't ping domain-B.internal (somehow it's pinging actual IP 10.10.0.1 instead of NAT IP 10.190.1.1)
I need some advice pertaining on the windows 2008 AD - external domain-trust via NAT, DNS forwarding has been setup successfully from both sites, but can't seem to get the authentication working.
I have 2 site connect via point-to-point VPN:
Site A - AD Server IP 10.150.0.1
Domain: domain-A.internal
Site B - AD Server 10.10.0.1 (Original IP subnet)
Site B - AD Server 10.190.1.1 (NAT IP Subnet back to Site A)
Domain: domain-B.internal
P/S: The NAT only applied on Site B.
Test result:
AD Server (Site A) able to ping NAT AD Server (Site B)
AD Server (Site B) able to ping AD Server (Site A)
AD server (Site B) able to ping domain-A.internal
AD server (Site A) can't ping domain-B.internal (somehow it's pinging actual IP 10.10.0.1 instead of NAT IP 10.190.1.1)
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER