Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Can only add to the domain servers in the same subnet as the Domain Controller.

Posted on 2016-11-01
3
Medium Priority
?
84 Views
Last Modified: 2016-11-01
I have a network setup with four subnets.

Inside 1
Inside 2
DMZ 1
DMZ 2

I have a domain controller running on Inside 1 and I can join servers in that same subnet to the domain with no issues. If I try to add servers from any other subnet to the domain they all fail.

I have rules in place allowing all traffic between subnets, just to rule that out. When attempting a domain add I can see traffic from the source server hitting the DC using Wireshark on the DC so I know that there are no firewall blocking issues.

I suspect my issue is one of incorrect DNS configuration.

Any help on this would be greatly appreciated.

TIA.
0
Comment
Question by:rob preston
  • 2
3 Comments
 
LVL 16

Accepted Solution

by:
Jason Crawford earned 2000 total points
ID: 41868193
Do both Domain Controllers include each other's IP address as a DNS server in the network adapter settings?

Example:

DC1
- IP Address: 10.254.1.100
- Primary DNS:10.254.1.100
- Secondary DNS: 10.254.2.100

DC2
- IP Address: 10.254.2.100
- Primary DNS: 10.254.2.100
- Secondary DNS:10.254.1.100
0
 

Author Comment

by:rob preston
ID: 41868198
Those settings are correct but in going back to check I straight away noticed that I had a typo in my subnet mask, so all is now working.

Thanks !!! :-)
1
 
LVL 16

Expert Comment

by:Jason Crawford
ID: 41868233
Happens to the best of us.  If you found my assistance helpful I would appreciate it if you would mark my comment as the solution.  Have a good one.
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This process allows computer passwords to be managed and secured without using LAPS. This is an improvement on an existing process, enhanced to store password encrypted, instead of clear-text files within SQL
Active Directory can easily get cluttered with unused service, user and computer accounts. In this article, I will show you the way I like to implement ADCleanup..
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

824 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question