Michael Baez
asked on
Domain Comptuers cant connect to the DC on Different Subnet.
I have computers on a separate subnet. They are on windows 2012 Domain. The DC is on a different subnet. I have a Active Directory integrated zone on subnet 1 and the computers still cant contact the DC. Example computers on the .1 network cant logon to the DC on .2. A Active directory Integrated DNS zone is created on the DC in the .1 network.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
do you have a route configured on your switch or router?
can you ping from any machine on .1 to .2 and vice versa?
can you ping from any machine on .1 to .2 and vice versa?
ASKER
yes all traffic. I can resolve the dc name just cant logon to the pc to the domain.
1. Can you ping the DC successfully?
2. Tried temporarily dropping the firewall on the target DC?
3. What, specifically do you mean by "logon to the DC"? Be authenticated? Access an SMB share? Start an RDP session?
2. Tried temporarily dropping the firewall on the target DC?
3. What, specifically do you mean by "logon to the DC"? Be authenticated? Access an SMB share? Start an RDP session?
Check the scope options for the 2nd DC, make sure DNS servers are set correctly and gateway address set correctly.
ASKER
i Can ping access a smb share and rdp from the other computers on the other domain. I just cant logon to the DC in subnet .2 from computers in subnet 1 that are in the same domain. Sais no logon servers available.
ASKER
So the DNA server of .1 had a zone and A records that point .2 domain to the Dc on .2.
ASKER
I meant DNS Server
ASKER
Do i have to creat a ldap ker srv record in the second zone?
What is "the second zone"? You shouldn't have to manually create any SRV records at all; those should all be automatically registered by the Netlogon service on the DC.
ASKER
The second zone is the domain of the second dns server.
ASKER
Thanks Guys the problem was exactly what Dave Said. Had to open port 88 Kerebos UDP TCP.
ASKER