Setting up DNS for 2nd DC

Forums › IT Pro and developers › Setting up DNS for 2nd DC

HybridTheory

22 posts

Geek

#41500 17-Sep-2009 12:49

Hi all,

Trying to link up our 2 sites via IPSec tunnel. I can RDP/PING into the remote machines fine.

our local site is on a 192.168.x.x subnet and the remote site is on a x.x.x.x subnet.
I believe I would need to setup the DNS on our local site to see the other site.

I have had a go in our DNS management but not much luck. Any ideas please?

wazzageek

1090 posts

Uber Geek

ID Verified

Trusted

Lifetime subscriber

#256611 17-Sep-2009 18:56

Hi there - what makes you believe that you need to setup DNS? Also - can you explain what you mean by the local site to see the other site? No following what you are trying to achieve, sorry.

MightyApe

You will find anything you want at MightyApe (affiliate link).

HybridTheory

22 posts

Geek

#256621 17-Sep-2009 19:48

sorry, by seeing.. i mean.. how will our site be able to resolve the other pc's at the remote site.

I just cant figure out how to add the other servers @ the remote site to our domain!

wazzageek

1090 posts

Uber Geek

ID Verified

Trusted

Lifetime subscriber

#256623 17-Sep-2009 19:53

Do they currently have entries that can be resolved via the DNS system now? Assuming that given the VPN in place you still can resolve DNS names via the internet and that the remote sites are on what appears to be a public range, then you could use the current existing DNS entries.

If you do not currently have resolvable entries - then the servers that your local site uses as DNS servers will need to have entries for your remote servers.

HybridTheory

22 posts

Geek

#256625 17-Sep-2009 19:58

yes, they are using their own public DNS servers.
I can surf on the remote machines. I can ping our internal domain controller and other machines in our internal network and vice versa.

So what you're saying is:
If our remote site uses eg say 111.111.111.10 and .11 as their pri/sec DNS, then I add them to our local sites domain controller's TCP stack(under advanced).

wazzageek

1090 posts

Uber Geek

ID Verified

Trusted

Lifetime subscriber

#256634 17-Sep-2009 20:06

Are you trying to get windows domain controllers to talk to each other via a VPN?

I'm still unsure to what the problem actually is.

HybridTheory

22 posts

Geek

#256636 17-Sep-2009 20:07

yes!

wazzageek

1090 posts

Uber Geek

ID Verified

Trusted

Lifetime subscriber

#256645 17-Sep-2009 20:17

There are going to be others here who will provide information for that much better than I will be, sorry.

You'll (probably) need to get to grips with trusts for your domain controllers.

The other thing you might need to look up is how to relay WINS information (which if I recall rightly is how Windows does network resolution in addition to DNS services)

HybridTheory

22 posts

Geek

#256648 17-Sep-2009 20:22

nah man dont be sorry, i appreciate you trying to assist! :)

WINS - All our machines are w2k3 servers so unsure whether wins would play a part.

I am aware of trusts but I just cant seem to setup DNS zones.. damit

HybridTheory

22 posts

Geek

#256649 17-Sep-2009 20:22

HybridTheory

22 posts

Geek

#256733 18-Sep-2009 08:28

anyone have any ideas?

MattHNZ

24 posts

Geek

#256736 18-Sep-2009 08:48

Just an observation.... you say the following:

>>our local site is on a 192.168.8.0 subnet and the remote site is on a 210.48.118.0 subnet.

Do you mean your single public IP address at the remote site is in the 210.48.118.0 subnet or is that the internal network range at the remote site?

It would be very unususal practice to have 210.48.118.0 as your internal subnet.

HybridTheory

22 posts

Geek

#256918 18-Sep-2009 19:02

Nah, the 210.x.x.x is a public addres owned by the hosting company..

I have sorted it!

After some extensive testing with nslookup and much more.. i found out that somehow DNS was being blocked @ the other end and somehow magically fixed it when I rang them to advise.

Now my AD replication and everything is working PERFECTLY :D

All my bosses are very happy about me.

Thanks for your help guys.

I shoudl really sit my MCSA now.

HybridTheory

22 posts

Geek

#260524 2-Oct-2009 11:55

Could mods please delete thread? Thanks.

Fraktul

836 posts

Ultimate Geek

Trusted

#260527 2-Oct-2009 12:02

HybridTheory: Could mods please delete thread? Thanks.

Why? If others run across the same issue then they couldnt find this thread and perhaps get some value out of it?