question about FRS and AD replication.

[Altria]

Hello All,
I am aware that there are two available TCP ports to use for intersite
replication (RCP/SMTP) but in the aspect of connectivity do branch site
DCs need to be able to use ICMP (ping/echo) for each other?
Suppose if ICMP is blocked, should replication of AD objects and FRS
(sysvol) be able to work?
TIA,
Altria

BTW, does anyone know of any good documentation on configuring site
links and bridgeheads for Win2003/2000 server?

 

[Tomasz Onyszko [MVP]]

Hello All,
I am aware that there are two available TCP ports to use for intersite
replication (RCP/SMTP) but in the aspect of connectivity do branch site
DCs need to be able to use ICMP (ping/echo) for each other?
Suppose if ICMP is blocked, should replication of AD objects and FRS
(sysvol) be able to work?

ICMP is used in general for detecting slow links, You can find
information about it in this KB:
http://support.microsoft.com/Default.aspx?id=179442
You can disable GPO slow link detection.

Documents describing replication of AD across firewalls like this one:
http://www.microsoft.com/serviceproviders/columns/config_ipsec_P63623.asp
did not mentioned ICMP as required protocol.

BTW, does anyone know of any good documentation on configuring site
links and bridgeheads for Win2003/2000 server?

I think this will be helpfull for You:
http://www.microsoft.com/windows2000/techinfo/planning/activedirectory/branchoffice/default.asp
http://www.microsoft.com/downloads/...F6-A8A8-40BB-9FA7-3A95C9540112&displaylang=en