According to Microsoft, AD doesn't support Active Directory.
Recently, I have a customer need to setup the trust and the AD between the NAT. the route is not work.
Also DC will have issue if the DC have multi network card will introduce multihome issue.
Also it will have issue if it is a DNS server.
After I found a lot of related document in the Internet. I found a article and use the regkey to limit DC to publish the DNS record
https://alasdaircs.wordpress.com/2012/07/17/a-little-active-directory-dns-server-magic/
after that I found a separate server to own the DNS role and create related the DNS record
_kerberos._tcp.dc._msdcs.domainname.local
Technet have more detail about it
https://technet.microsoft.com/en-us/library/cc961719.aspx
Recently, I have a customer need to setup the trust and the AD between the NAT. the route is not work.
Also DC will have issue if the DC have multi network card will introduce multihome issue.
Also it will have issue if it is a DNS server.
After I found a lot of related document in the Internet. I found a article and use the regkey to limit DC to publish the DNS record
https://alasdaircs.wordpress.com/2012/07/17/a-little-active-directory-dns-server-magic/
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DNS\Parameters\PublishAddresses
Data type: REG_SZ
Range: IP address [IP address]
Default value: blank
It will fix the issue, however, it wont fix the the DNS issue between NAT.Range: IP address [IP address]
Default value: blank
after that I found a separate server to own the DNS role and create related the DNS record
_kerberos._tcp.dc._msdcs.domainname.local
Technet have more detail about it
https://technet.microsoft.com/en-us/library/cc961719.aspx
留言
發佈留言