asked on
Cannot ping mydomain.local from my other trusted side.
I already cannot remember if it is caused by removal of WINS. Suddenly our two-way trust domains between two trees becomes broken. Well, as I can see from side A to side B seems still fine but from side B to side A is broken. As I can see, I from side B cannot ping side A's DomainA.local while I from side A can ping side B's DomainB.local. Question is, why from side B I cannot ping side A's DomainA.local? Is it a DNS issue ? or WINS issue? or others? Please help.
Active DirectoryDNS
Last Comment
Will Szymkowski
ASKER
In side A's DNS servers I am able to add side B's DNS servers as the Secondary Zone. However I am NOT able to do that in side B's DNS severs since I even cannot see any side A's DNS servers listed in the Browse list. I guess one of the two ways of Trust is broken. The problem is, shall I fix the DNS before rebuilding the Trust or the opposite? How?
In side B I can ping side A's servers/hosts without a problem but just not the side A's domain name which is called domainA.local, which signals the Trust becomes broken.
As far as why I cannot ping domainA.local from side B? (As mentioned I can ping domainB.local from side A.) That I really need help as it won't get resolved at all. Do I need to manually add any records in DNS or WINS in order to make this ping working? Please help.
In side B I can ping side A's servers/hosts without a problem but just not the side A's domain name which is called domainA.local, which signals the Trust becomes broken.
As far as why I cannot ping domainA.local from side B? (As mentioned I can ping domainB.local from side A.) That I really need help as it won't get resolved at all. Do I need to manually add any records in DNS or WINS in order to make this ping working? Please help.
On the DNS servers in DomainA did you add the DNS servers of DomainB to the Zone Transfers Tab? You cannot add Secondary Zones if you do not have Zone Transfers enable for the DNS server in the other domain.
Also why are you only using a 1 way trust and not 2 way? Are you trying to access resources in both domains?
Will.
Also why are you only using a 1 way trust and not 2 way? Are you trying to access resources in both domains?
Will.
ASKER
Transfer in the tab has been enabled.
The Trust is a two-way. But one of them is broken. That is what I'm trying to figure out -- how to repair it?
The Trust is a two-way. But one of them is broken. That is what I'm trying to figure out -- how to repair it?
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
When you query a machine from a forest that is not in your forest root domain it needs to query the other DNS servers in the other forest to get a reply back.
Another thing you can do is create a secondary zone for Domain A in Domain. You can then do the same for Domain B in Domain A. If you go this route you will need to add "Zone Transfers" for the other forest on each of the Zones you want to present as read only.
If you have all of this in place and it still doesn't work might be a firewall related issue.
Will.