preventing remote client logon to home servers

[Marty]

we have a vpn tunnel seperating our home network and a
remote facility. on the remote network we have a local
domain controller for local clients, and all our other
dc's are located at the home office. the problem is, when
remote clients authenticate to the network, and get their
IP addresses from the local server, they also try to
authenticate to the home networks dc's too. how can i
prevent unnecessary logon traffic across our vpn, and
keep the remote clients from trying to connect across the
internet? Is there any way to specify a preferred logon
server for my remote clients? i heard that i may need to
prevent replication from my remote server in Sites and
Services, but I am not sure.

Thanks,

Marty
Kendall College

 

[Chriss3]

Yes, you have to use sites to do so.


Step-by-Step Guide to Active Directory Sites and Services:
http://www.microsoft.com/windows2000/techinfo/planning/activedirectory/adsites.asp

--
Regards,

Christoffer Andersson
No email replies please - reply in the newsgroup
If the information was help full, you can let me know at:
http://www.itsystem.se/employers.asp?ID=1

 

[Jerold Schulman]

we have a vpn tunnel seperating our home network and a
remote facility. on the remote network we have a local
domain controller for local clients, and all our other
dc's are located at the home office. the problem is, when
remote clients authenticate to the network, and get their
IP addresses from the local server, they also try to
authenticate to the home networks dc's too. how can i
prevent unnecessary logon traffic across our vpn, and
keep the remote clients from trying to connect across the
internet? Is there any way to specify a preferred logon
server for my remote clients? i heard that i may need to
prevent replication from my remote server in Sites and
Services, but I am not sure.

Thanks,

Marty
Kendall College

Try making the remote domain controller a Global Catalog server,
tip 7370 in the 'Tips & Tricks' at http://www.jsiinc.com

Jerold Schulman
Windows: General MVP
JSI, Inc.
http://www.jsiinc.com

 

[Guest]

Chris,

this is helpful, but it only seems to tell me how to
configure replication between servers in the same or on
different networks, not how to troubleshoot
authentication problems with remote clients attempting to
connect back to the home office servers. Any suggestions?

Marty

 

[Chriss3]

okey. lets see it in this way

SITE1 (DC01 is in this site)
This site has been assigned the follow subnet: 10.11.1.0

Your clients at this subnet will authentication to DC´s in this site.

--
Regards,

Christoffer Andersson
No email replies please - reply in the newsgroup
If the information was help full, you can let me know at:
http://www.itsystem.se/employers.asp?ID=1