I have a few DCs (Server 2008 and 2016) in my environment. Three of them are on the 192.168.0.0/24 network and one is located at a remote site (192.168.1.0/24) which is accessible over a site to site VPN. I can join any Windows client to the domain when the client is on 192.168.0.0/24 subnet. If I am at the remote site I can join any Win client to the domain that is part of the 192.168.1.0/24 subnet.
The problem I have is when I attempt to join a Win client that is not part of the DCs' subnets. I believe this is true for both locations. Please see the attached file to review the error message I get when I attempt to join a Win client to the domain. My client is on the 10.0.0.0/24 network. There is no ACLs on the def. GW (Cisco ASR) between 192.168.0.0/24 and 10.0.0.0/24. Also, I am not filtering any traffic on VPN.
So far I was able to confirm the DCs are reachable from 10.0.0.0/24 (ping and RDP). As far as I can tell the SRV records look good, however I do not see the _msdcs folder in the Forward Lookup Zone. Also, I noticed that the domain name is GPS instead of GPS.local or GPS.net for example.
GPS-AD-2.GPS was decommissioned some time ago and AD-1 is to follow shortly. All DC are multi-homed but the I only have one NIC active at the moment for troubleshooting purposes.
Any help is greatly appreciated.
Thank You in advance.