We are trying to set up a remote domain controller Windows 2003.
At the main office we currently have AD1 which is our primary AD and AD2 which is a backup. Now due to server migration and moves we need to temporarily setup a third AD (AD3) at a remote location.
Our router does not support VPN and seeing this is a temporary situation, we do not want to upgrade at this time. Trying to determine the best way to configure the system so that remote AD3 can replicate with AD1 in the main office.
Here is what we have done so far. Set up AD3 and ran DCPromo. All 3 Ads are on the same domain – example.com, but AD3 is using a different IP scheme. Example - main office 184.108.40.206 and remote office 220.127.116.11 We have configured NAT at the remote site and assigned an external IP to AD3.
In Active Directory Site and Services renamed default site to Main and created a new site for the Remote office. Added subnets for Main office and Remote, for the Remote office, we used the external IP. Then created Inter-Site link between offices using IP. Pointed DNS entries for Remote AD3 to it's external IP.
In TCP/IP setting of AD3 unchecked “Register this connection’s address in DNS”.
When replication takes place, the DNS entry for AD3 is changed to the private IP address. Even tried changing it on all 3 ADs and it still reverts back to the private IP the next time it replicates. Once this happens, AD1 can no longer communicate with AD3. Is there a way to prevent DNS settings for AD3 from changing, or perhaps we are going about this all entirely wrong…..