Okay.. So we have all the firewall ports open for AD/DNS and replication thats is fine... however... we cant route to all the subnets that the child domain DC's are on.. I think thats where we are failing. We moved the FSMO roles to the DC on the segment that we can reach, but when looking at the netmon the DC we're promoting is trying to reach the DC's on the network that we cant route.
So i'll explain..
Promoting DC IP : 1.x.x.x
Firewall is open to these DC's in the root/child domains and communication is fine :
2.x.x.x (Has FSMO)
3.x.x.x
4.x.x.x
5.x.x.x
Now when we try to promote the DC on the other network t tries to reach un-routable networks :
6.x.x.x
7.x.x.x
My question how do i make sure that the DC i'm promoting only looks at the 2/3/4/5 DC's and ignores the others?
Bookmarks