In
WS said:
Hi Everyone,
We have a single AD domain spanning multiple sites, each of which
uses a separate subnet (192.168.0.0/24 and 192.168.1.0/24).
For the DNS setup, we have a single company.local AD-Integrated
forward lookup zone that contains host records for both the
192.168.0.0/24 and 192.168.1.0/24 subnets listed above. For reverse
lookup, we have two reverse AD-Integrated zones for each subnet.
Is this the correct setup for the scenario?
Thanks
)
Sounds like it. Even if you have two locations, as you've pointed out, you
only have one domain, hence why the company.local zone has records for both
locations. The zone is based on AD's DNS Domain name.
I would suggest to have two DC/DNS servers at each location. Have the users
in their respective locations point to the DNS server in that location
first, and the other DNS as their second entry. Reminder not to use an ISP's
DNS address on any client or DC. Configure a forwarder for efficient
Internet resolution.
As for the IP addresses subnets, I would suggest to use something else other
than 192.168.0.0/24 or 192.168.1.0/24. The reason why is many folks who've
purchased a Linksys, DLink, etc, Cable/DSL router have those addresses in
use. If a use attempts to VPN in from their home, and the IP subnets are
identical, things will just not work.
I hope that helps.
--
Regards,
Ace
If this post is viewed at a non-Microsoft community website, and you were to
respond to it through that community's website, I may not see your reply.
Therefore, please direct all replies ONLY to the Microsoft public newsgroup
this thread originated in so all can benefit.
This posting is provided "AS-IS" with no warranties or guarantees and
confers no rights.
Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
Microsoft Windows MVP - Windows Server - Directory Services
Infinite Diversities in Infinite Combinations.
=================================
