Multiple Domains, Multiple DNS, over VPN

Hello,

we have two facilities connected by an open VPN tunnel between them.  Each one has its own AD, DC and its own DNS.  but of course we need to share information between the two.

I have been working to get the DNS for DomainA available to DomainB and vice versa, and i have been 50% successful to this point.  

for some reason, I have been able forward the DNS from DomainA to DomainB, but I cannot get the DNS on DomainB to load on the DomainA server.  

When I attempt to add this zone to the DomainA server I get an error stating that "the server with this ip is not authoritative for the required zone"

which is where my confusion is....to my knowledge I have the same settings on both servers, so I am not sure why this one won't set up?

I have DomainA listed as a Name server on DomainB and setup DomainB to allow zone transfers to any servers listed as a NS.

anything glaring that I should check?

one other thing I have noticed is that when at DomainB, if I want to search for a computer on DomainA, I have to enter the FQDN and not just the DNS name in order to find it?  is that normal?
redekopmfgAsked:
Who is Participating?
 
David Johnson, CD, MVPOwnerCommented:
I have DomainA listed as a Name server on DomainB and setup DomainB to allow zone transfers to any servers listed as a NS.

not the way I'd do it.. I'd keep the domains separate.
Then in AD sites and services establish a two way trust between the two domains.
0
 
Chris HInfrastructure ManagerCommented:
You need to allow authoritative transfers from this zone.

http://technet.microsoft.com/en-us/library/cc770984.aspx
0
 
redekopmfgAuthor Commented:
Hi ve3ofa,

I had not thought of that approach, and like that idea......

I have attempted to do that now, but the DNS issue that I am experiencing seems to be affecting this as well.

I created the trust from DomainB, it completes the wizard, but then when I attempt to validate it I get an error stating that: "There are currently no logon servers available to service the logon request."

if I go to DomainA and attempt to validate, I get this error: "Windows cannot find an active directory domain controller for the domainB.com domain.  Verify that an AD DC is available and then try again"
0
 
hecgomrecCommented:
Set the sites to work separated.

Once you have them like that make sure the networks are in different 192.168.1.0 / 192.168.2.0 like this you are sure there are no collisions in your setting.

Second step, add in each domain the address of the other DNS as a primary DNS server for the other.

Users connecting to the shares should exist on both sides.

Good Luck
0
 
redekopmfgAuthor Commented:
I was able to resolve my DNS issues, and this is working well.  Thanks
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.