AD Sites & Svcs and Micro Subnets

Posted on 2012-09-13
Last Modified: 2012-09-14
AD 2003 environment, with AD Sites & Services set up fairly well.

We have hundreds of retail sites that use /27 subnets - all the way from to  They are now visible to my DCs because we switched to MPLS, and I'm getting bombarded by this message:

Event ID 5807 - Connections from client machines who don't map to any of the existing sites in the enterprise.

My question is this:  Do I need to list every subnet in S&S to fix this, or could I simply point the /16 subnet to the home site?

Thanks for your help!
Question by:brodeck
    LVL 57

    Accepted Solution

    Do they have DCs in their stores or do they all come back to HQ for DC.  You could use a /16 if you want them all to come back to the home site.  That is known as a catch all subnet, more on that here



    Expert Comment

    If you assign /16 to any site..all machines IP address comes under this /16 ( to  will authenticate with DC's available in site which you have mentioned in AD sites & services.

    Author Comment

    Thanks for the excellent info - backed up by a TechNet article.  Perfect!

    Featured Post

    How to run any project with ease

    Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
    - Combine task lists, docs, spreadsheets, and chat in one
    - View and edit from mobile/offline
    - Cut down on emails

    Join & Write a Comment

    This is my first article in EE and english is not my mother tongue so any comments you have or any corrections you would like to make, please feel free to speak up :) For those of you working with AD, you already are very familiar with the classi…
    On July 14th 2015, Windows Server 2003 will become End of Support, leaving hundreds of thousands of servers around the world that still run this 12 year old operating system vulnerable and potentially out of compliance in many organisations around t…
    This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
    This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

    734 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    23 Experts available now in Live!

    Get 1:1 Help Now