preventing remote client logon to home servers

M

Marty

we have a vpn tunnel seperating our home network and a
remote facility. on the remote network we have a local
domain controller for local clients, and all our other
dc's are located at the home office. the problem is, when
remote clients authenticate to the network, and get their
IP addresses from the local server, they also try to
authenticate to the home networks dc's too. how can i
prevent unnecessary logon traffic across our vpn, and
keep the remote clients from trying to connect across the
internet? Is there any way to specify a preferred logon
server for my remote clients? i heard that i may need to
prevent replication from my remote server in Sites and
Services, but I am not sure.

Thanks,

Marty
Kendall College
 
J

Jerold Schulman

we have a vpn tunnel seperating our home network and a
remote facility. on the remote network we have a local
domain controller for local clients, and all our other
dc's are located at the home office. the problem is, when
remote clients authenticate to the network, and get their
IP addresses from the local server, they also try to
authenticate to the home networks dc's too. how can i
prevent unnecessary logon traffic across our vpn, and
keep the remote clients from trying to connect across the
internet? Is there any way to specify a preferred logon
server for my remote clients? i heard that i may need to
prevent replication from my remote server in Sites and
Services, but I am not sure.

Thanks,

Marty
Kendall College
Click to expand...

Try making the remote domain controller a Global Catalog server,
tip 7370 in the 'Tips & Tricks' at http://www.jsiinc.com

Jerold Schulman
Windows: General MVP
JSI, Inc.
http://www.jsiinc.com
 
G

Guest

Chris,

this is helpful, but it only seems to tell me how to
configure replication between servers in the same or on
different networks, not how to troubleshoot
authentication problems with remote clients attempting to
connect back to the home office servers. Any suggestions?

Marty
 
C

Chriss3

okey. lets see it in this way

SITE1 (DC01 is in this site)
This site has been assigned the follow subnet: 10.11.1.0

Your clients at this subnet will authentication to DC´s in this site.

--
Regards,

Christoffer Andersson
No email replies please - reply in the newsgroup
If the information was help full, you can let me know at:
http://www.itsystem.se/employers.asp?ID=1
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

preventing remote clients from logging on to local servers 1
Creating Remote sites Properly 3
AD site to site replication 2
Windows 2000 Domain with Windows 2003 DC's?? 6
Question - Remote sites without servers over vpn 3
Client and DC 4
Remote Offices Active Directory question 3
Client Authentication Problem 2

Top