We have a Windows 2012 R2 domain with 2 domain controllers. Users authenticate to the domain with no problems.
We have 2 subnets
The WLAN traffic is routed through our Sophos XG230 Firewall/Router 192.168.0.1
Any user authenticating against one of the domain controllers (from the WLAN) shows the ip address of the Firewall/Router, not its correct ip address of hte host they are on.
I can see this in the kerberos TGT in Event Viewer 4768.
This is only happening on 1 of the domain controllers.
Any ideas on how troubleshoot would be greatly appreciated.