ML
    • Recent
    • Categories
    • Tags
    • Popular
    • Users
    • Groups
    • Register
    • Login

    Additional domain controller in remote site

    Scheduled Pinned Locked Moved IT Discussion
    dnsbranch officedomain controlldhcp
    77 Posts 5 Posters 24.6k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • IT-ADMINI
      IT-ADMIN @scottalanmiller
      last edited by

      @scottalanmiller

      when i run nslookup in any branch computer, it resolve successfully but it use the main DNS even if i they have as primary DNS the ADC ip address
      what anger me is that machines in the branch office neglect the ADC

      alexntgA 1 Reply Last reply Reply Quote 0
      • alexntgA
        alexntg @IT-ADMIN
        last edited by

        @IT-ADMIN said:

        @scottalanmiller

        when i run nslookup in any branch computer, it resolve successfully but it use the main DNS even if i they have as primary DNS the ADC ip address
        what anger me is that machines in the branch office neglect the ADC

        What happens when you force nslookup to use the branch server?

        IT-ADMINI 1 Reply Last reply Reply Quote 0
        • DashrenderD
          Dashrender @Dashrender
          last edited by

          @Dashrender said:

          what server is providing DHCP for the branch PCs?

          Again, what server is providing DHCP to the branch PCs? Is the scope set correctly to give the PC's the DNS of the branch DNS server.

          IT-ADMINI 1 Reply Last reply Reply Quote 1
          • IT-ADMINI
            IT-ADMIN @alexntg
            last edited by

            @alexntg said:

            @IT-ADMIN said:

            @scottalanmiller

            when i run nslookup in any branch computer, it resolve successfully but it use the main DNS even if i they have as primary DNS the ADC ip address
            what anger me is that machines in the branch office neglect the ADC

            What happens when you force nslookup to use the branch server?

            really i didn't try that, but tomorrow i will go to the branch office and try this, thank you

            alexntgA 1 Reply Last reply Reply Quote 0
            • alexntgA
              alexntg @IT-ADMIN
              last edited by

              @IT-ADMIN said:

              @alexntg said:

              @IT-ADMIN said:

              @scottalanmiller

              when i run nslookup in any branch computer, it resolve successfully but it use the main DNS even if i they have as primary DNS the ADC ip address
              what anger me is that machines in the branch office neglect the ADC

              What happens when you force nslookup to use the branch server?

              really i didn't try that, but tomorrow i will go to the branch office and try this, thank you

              You can try it from your computer, even. Just force nslookup to use the branch DC.

              1 Reply Last reply Reply Quote 0
              • IT-ADMINI
                IT-ADMIN @Dashrender
                last edited by

                @Dashrender said:

                @Dashrender said:

                what server is providing DHCP for the branch PCs?

                Again, what server is providing DHCP to the branch PCs? Is the scope set correctly to give the PC's the DNS of the branch DNS server.

                yes, the DHCP is providing the correct DNS setting which is the ip of my ADC as primary DNS and the internet gateway as secondary DNS

                alexntgA scottalanmillerS 2 Replies Last reply Reply Quote 0
                • alexntgA
                  alexntg @IT-ADMIN
                  last edited by

                  @IT-ADMIN said:

                  @Dashrender said:

                  @Dashrender said:

                  what server is providing DHCP for the branch PCs?

                  Again, what server is providing DHCP to the branch PCs? Is the scope set correctly to give the PC's the DNS of the branch DNS server.

                  yes, the DHCP is providing the correct DNS setting which is the ip of my ADC as primary DNS and the internet gateway as secondary DNS

                  For the branch site, the DC should be primary DNS, and the DC at your main location should be secondary. Non-AD DNS sources should not be used.

                  scottalanmillerS 1 Reply Last reply Reply Quote 1
                  • scottalanmillerS
                    scottalanmiller @IT-ADMIN
                    last edited by

                    @IT-ADMIN said:

                    @Dashrender said:

                    @Dashrender said:

                    what server is providing DHCP for the branch PCs?

                    Again, what server is providing DHCP to the branch PCs? Is the scope set correctly to give the PC's the DNS of the branch DNS server.

                    yes, the DHCP is providing the correct DNS setting which is the ip of my ADC as primary DNS and the internet gateway as secondary DNS

                    Internet gateway? No it must be the other DC.

                    1 Reply Last reply Reply Quote 0
                    • scottalanmillerS
                      scottalanmiller @alexntg
                      last edited by

                      @alexntg said:

                      @IT-ADMIN said:

                      @Dashrender said:

                      @Dashrender said:

                      what server is providing DHCP for the branch PCs?

                      Again, what server is providing DHCP to the branch PCs? Is the scope set correctly to give the PC's the DNS of the branch DNS server.

                      yes, the DHCP is providing the correct DNS setting which is the ip of my ADC as primary DNS and the internet gateway as secondary DNS

                      For the branch site, the DC should be primary DNS, and the DC at your main location should be secondary. Non-AD DNS sources should not be used.

                      I use them but only for tertiary and quaternary DNS options and only when I have only two DCs.

                      alexntgA 1 Reply Last reply Reply Quote 0
                      • IRJI
                        IRJ
                        last edited by

                        We use a 5 DCs at our main office and branches have no DCs. Since I use PDQ for package deployment and I use a separate Group Policy for each branch. I have never had an issue with our T1 Connections. You can use AD Sites and Services to create a new site for the branch and just build the second DC at your main office. I really don't see why you need a second DC at the branch, user authentication and group policy don't use much bandwidth at all. I bet your branch users are still accessing their shares and applications over the WAN. Which uses much more resources than AD would ever use.

                        1 Reply Last reply Reply Quote 0
                        • scottalanmillerS
                          scottalanmiller
                          last edited by

                          We use central AD only as well.

                          1 Reply Last reply Reply Quote 1
                          • alexntgA
                            alexntg @scottalanmiller
                            last edited by

                            @scottalanmiller said:

                            @alexntg said:

                            @IT-ADMIN said:

                            @Dashrender said:

                            @Dashrender said:

                            what server is providing DHCP for the branch PCs?

                            Again, what server is providing DHCP to the branch PCs? Is the scope set correctly to give the PC's the DNS of the branch DNS server.

                            yes, the DHCP is providing the correct DNS setting which is the ip of my ADC as primary DNS and the internet gateway as secondary DNS

                            For the branch site, the DC should be primary DNS, and the DC at your main location should be secondary. Non-AD DNS sources should not be used.

                            I use them but only for tertiary and quaternary DNS options and only when I have only two DCs.

                            Using non-AD DNS in an AD enviornment can lead to kerberos errors and other fun, erratic behavior.

                            1 Reply Last reply Reply Quote 0
                            • scottalanmillerS
                              scottalanmiller
                              last edited by

                              Yes. Using non-AD DNS is a more expert option. Just going to make things harder. Stick with integrated AD / DNS.

                              IT-ADMINI 1 Reply Last reply Reply Quote 0
                              • IT-ADMINI
                                IT-ADMIN @scottalanmiller
                                last edited by IT-ADMIN

                                @scottalanmiller said:

                                Yes. Using non-AD DNS is a more expert option. Just going to make things harder. Stick with integrated AD / DNS.

                                yes of course i set my ADC to be DNS server, i think that this issue have no solution because i think i have everything set correctly whether it be physical and logial,
                                i will bring that ADC from the branch office and content myself with only one DC in the main office.

                                1 Reply Last reply Reply Quote 0
                                • scottalanmillerS
                                  scottalanmiller
                                  last edited by

                                  Two in the main office is good.

                                  1 Reply Last reply Reply Quote 0
                                  • alexntgA
                                    alexntg
                                    last edited by

                                    Have you tried forcing a lookup against the branch DC via nslookup yet?

                                    1 Reply Last reply Reply Quote 0
                                    • IT-ADMINI
                                      IT-ADMIN
                                      last edited by

                                      can you imagine what happen to me yesterday night??
                                      i was trying to solve the problem, i added one reverse lookup zone for the remote network 192.168.5 because there was only one reverse lookup zone for the main network, after doing so the main DC get crazy, a message appears "THE DNS SERVER NOT OPERATING", fortunately i do that at night and no employee was there, everything stack, no logon server available, the network drive is not working....
                                      i had very difficult time, i realize the importance of the DNS, so i delete the reverse lookup zone, then the DNS came to life, i restarted the main DC, the same issue again DNS NOT OPERATING, i doubt the remote DC have some affect on the main DC so i disable the VPN, restarted the main DC, DNS came to life, i enable the VPN, the DNS stack, that time i realize that the remote DC who is responsible of all of this, so i remove this shit from the Domain and from the Site and services console, everything is working now ,lol

                                      1 Reply Last reply Reply Quote 0
                                      • scottalanmillerS
                                        scottalanmiller
                                        last edited by

                                        Wow. Glad that you found that.

                                        1 Reply Last reply Reply Quote 0
                                        • DashrenderD
                                          Dashrender
                                          last edited by

                                          so you only have one DNS server running now?

                                          IT-ADMINI 1 Reply Last reply Reply Quote 0
                                          • IT-ADMINI
                                            IT-ADMIN @Dashrender
                                            last edited by

                                            @Dashrender said:

                                            so you only have one DNS server running now?

                                            yes, i content myself with only one DC - DNS server which is the old one in the main office, and users in the branch office login from the main DC, hopefully the remote login will not consume much bandwidth since i have only 512 Kbps speed, i wanted to have a remote DC from my branch computers but unfortunately this project was not successful and may corrupt the all domain because the DNS service is everything in the domain, if corrupted or damaged, it will be a total lost, fortunately i test that at night otherwise i will be in trouble with the management

                                            1 Reply Last reply Reply Quote 0
                                            • 1
                                            • 2
                                            • 3
                                            • 4
                                            • 1 / 4
                                            • First post
                                              Last post