Using multiple DNS and DHCP servers...

D

Darcy

Good Day,

This is my first ACTUAL time creating multiple sites
connected via VPN. I have a few questions for things that
aren't clear.

We are using 1 AD Domain for 5 sites. VPN is created with
3com firewall.

I created the sites in the Sites and Services and assigned
a subnets to each
site.

We have DHCP and DNS (AD Intergrated) running good at the
main site at my location. Now I am hoping to get the
other sites running.

1. Do I understand that I need to run DNS and DHCP at
each site? I want the redundancy of this but am unsure
how this works. DHCP doesn't cross subnets right? But
what about DNS, do I only enable a forwarder at each site
back to MY DNS server that is configured with my ISPs DNS
as a forwarder? I wish for internet traffic to be routed
through my main site (my location) to ensure filtered
access to the web through the firewall.

2. When I configure the DC at each site the DCPROMO asks
the relevant questions regarding adding a new DC right, so
then I configure DNS, DCHP and such? Does DNS "auto-
configure" with replication...or does it manually need to
be configured?

Please let me know what other info might be needed to
assist helping me on
this.

Cheers
 
E

Enkidu

Good Day,

This is my first ACTUAL time creating multiple sites
connected via VPN. I have a few questions for things that
aren't clear.

We are using 1 AD Domain for 5 sites. VPN is created with
3com firewall.

I created the sites in the Sites and Services and assigned
a subnets to each
site.

We have DHCP and DNS (AD Intergrated) running good at the
main site at my location. Now I am hoping to get the
other sites running.

1. Do I understand that I need to run DNS and DHCP at
each site? I want the redundancy of this but am unsure
how this works. DHCP doesn't cross subnets right? But
what about DNS, do I only enable a forwarder at each site
back to MY DNS server that is configured with my ISPs DNS
as a forwarder? I wish for internet traffic to be routed
through my main site (my location) to ensure filtered
access to the web through the firewall.
Click to expand...
Yes, you can forward requests to the main site DNS, which will then
forward to the ISP's DNS. However this will not make all traffic flow
as you wish. You will need to set up default routes at the satellite
sites and in the main site to route the traffic.

You are correct that by default DHCP is not routed and a DHCP server
in each site shouldn't be a problem. Just configure different scopes
in each.
2. When I configure the DC at each site the DCPROMO asks
the relevant questions regarding adding a new DC right, so
then I configure DNS, DCHP and such? Does DNS "auto-
configure" with replication...or does it manually need to
be configured?
Click to expand...
If it is Active Directory Integrated it will automatically replicate
with the other DCs.
Please let me know what other info might be needed to
assist helping me on
this.
Click to expand...
I would browse the Microsoft site for information and instructions.
Here's a starter document:

http://www.microsoft.com/technet/pr...s/activedirectory/deploy/adguide/default.mspx

Cheers,

Cliff

Cheers,

Cliff
 
G

Guest

-----Original Message-----

Yes, you can forward requests to the main site DNS, which will then
forward to the ISP's DNS. However this will not make all traffic flow
as you wish. You will need to set up default routes at the satellite
sites and in the main site to route the traffic.

You are correct that by default DHCP is not routed and a DHCP server
in each site shouldn't be a problem. Just configure different scopes
in each.
If it is Active Directory Integrated it will automatically replicate
with the other DCs.
I would browse the Microsoft site for information and instructions.
Here's a starter document:

http://www.microsoft.com/technet/prodtechnol/windows2000se rv/technologies/activedirectory/deploy/adguide/default.mspx

Cheers,

Cliff

Cheers,

Cliff
.
Click to expand...


Thanks Cliff,

To confirm about the the default route..you mean configure
the DHCP server at the satellite site to issue a Default
Gateway address of the Internet Router at my main site?
 
E

Enkidu

Thanks Cliff,
You are wlecome. :cool:

To confirm about the the default route..you mean configure
the DHCP server at the satellite site to issue a Default
Gateway address of the Internet Router at my main site?
Click to expand...
In the outlying sites, the default route should be the VPN connection
to the main site. All default routes in the main site should be the
Internet firewall/router device. You can give some of the devices
their default gateways through DHCP, but servers and routers will have
statically assigned gateways.

Cheers,

Cliff
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Question - Remote sites without servers over vpn 3
LDAP traffic across sites 1
Win2000 DC IP address change 1
Advice on 2nd Domain Controller, DNS and DHCP server. 5
Set DNS for corp Windows clients when using public networks 0
User can't browse web when site dc is down 2
DNS lookups and Sites and Services 1
DNS 2

Top