connections keep reappearing in AD Sites and Services

Posted on 2013-09-04
Medium Priority
Last Modified: 2013-09-05
I have a domain with one domain controller at a central location running Server 2008, and several branch locations with DCs running 2008R2.  Each branch is connected to the central location via relatively slow VPN links.

Sites B, C, and D are all connected to site A.  Sites C and D are connected to each other, but Site B is not connected to C or D at all; they don't have VPNs set up and there's no direct connectivity.

In Active Directory Sites and Services, I've set up each site and associated the correct subnets.  In Inter-Site Transports\IP, I deleted DEFAULTIPSITELINK and manually created these site links:
Site A to B
Site A to C
Site A to D
Site C to D.

My problem is that for Site B, under NTDS Settings, connections keep getting automatically generated for replication from sites C and D.  This shouldn't happen, since they can't communicate with each other.  I manually delete the connections, but they come back on their own.

How can I get the KCC to knock it off?
Question by:TikTek-IT
LVL 13

Accepted Solution

Jaihunt earned 2000 total points
ID: 39463795
So in the Site A to B sitelink you keep only site A and Site B ? If you dont want Site B to contact Site C and Site D you can disable intersite replication and create manual connection between site A and Site B.

repadmin /siteoptions /site:siteB +IS_INTER_SITE_AUTO_TOPOLOGY_DISABLED


LVL 57

Expert Comment

by:Mike Kline
ID: 39463868
Do you have bridge all site links enabled or disabled?  

More on BASL   http://technet.microsoft.com/en-us/library/dd736189(v=ws.10).aspx


LVL 12

Expert Comment

ID: 39464608
Easily Design & Build Your Next Website

Squarespace’s all-in-one platform gives you everything you need to express yourself creatively online, whether it is with a domain, website, or online store. Get started with your free trial today, and when ready, take 10% off your first purchase with offer code 'EXPERTS'.

LVL 18

Expert Comment

by:Sarang Tinguria
ID: 39464831
You may have some configuration issues in  site links you have configured otherwise KCC would not have created these objects

BTW Is the Site link is showing correct on Site B DC's i.e  is it replicating with other DC
LVL 24

Expert Comment

ID: 39465947
As the network isn't fully routed first shutoff Bridge All Site Links (BASL).http://technet.microsoft.com/en-us/library/cc738789(v=WS.10).aspx

I will recommend to create hub and spoke topology as this will suit the requirement ,disable the bridging and create specific IP connectors for each site to connect from the remote site to the hub and add the two sites in each specific connector.Create the site links as below.

SiteA to SiteB
SiteA to SiteC
SiteA to SiteD

If maula connection are created then delete the same and let Kcc do the job.

Author Closing Comment

ID: 39467051
Disabling this for the site appears to have corrected the problem.  Thank you for your help.

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Understanding the various editions available is vital when you decide to purchase Windows Server 2012. You need to have a basic understanding of the features and limitations in each edition in order to make a well-informed decision that best suits …
The article explains the process to deploy a Self-Service password reset portal I developed a few years ago. Hopefully, it will prove useful to someone.  Any comments, bug reports etc. are welcome...
This tutorial will walk an individual through the steps necessary to install and configure the Windows Server Backup Utility. Directly connect an external storage device such as a USB drive, or CD\DVD burner: If the device is a USB drive, ensure i…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

624 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question