Mutiple Domain and Network Zone. Need DNS Config. 1

[Simonchtan]

I am required to connect my Network to another network belonging to another company. We are not related in anyway expect we need to access their PDC, DC and Server in their network. We are connected with a Leased Line Circuit directly into their Network.

If anyone can advise how i setup the DNS entry in my AD2000 DNS server and Any special port required to be open on the firewall if we want both sides to get dymanic update?

I know no voice, I knew nothing about systems,
i know NUTS on networking, Therefore I dont know anything!
-----------------------------------
©2003,2004 SCHT.

 

[Nostradamus]

As long as the routing tables look ok (can you ping the ip of the resources on the other network?), adding a host in the dns and then accessing it, shouldn't be a problem.
Add a new A record with the appropriate name of the other machine and then try pinging it using that name.

I'm not keen on firewalls and ports, but I assume the following needs to be open.

need to access their PDC? Can I assume you have older machines on the network? prior to win2k that is?
Then perhaps port 445 should be opened for using netbios over tcp/ip. Better that, then opening 135-139 (used for file sharing, printing etc in older Microsoft OS) If you only have newer machines, then port 53 for dns should be enough? Which I assume is already open (internet).

/Sören

 

[Simonchtan]

Thanks for the infomation.

I have managed to add the PDC IP to to the DNS A Record.

I need to connect NT4 UsrMgr to that domain however i am not able to browse to that domain.

I know no voice, I knew nothing about systems,
i know NUTS on networking, Therefore I dont know anything!
-----------------------------------
©2003,2004 SCHT.

 

[Nostradamus]

So you can connect to the other PDC? good.
Can you browse computers on the other network? Or connect to shared resources?

hmm, regarding user manager my first thought would be to open up ports 135-139 for those typical microsoft communications. Then I found this...

http://honor.trusecure.com/pipermail/firewall-wizards/1998-July/003121.html

I'm not keen on FW and ports as mentioned earlier, so I think google and/or microsoft will have to guide you through this one. Or (of course) someone else on this forum.
Perhaps sniffing you NIC/network when running usrmgr to your local domain could give a clue on which port to open?

/Sören

 

[Simonchtan]

Hi,

Thanks, all your information check out...
Great help!!!

The only way to solve this is to set the domain controller as the Domain. and due to the design both side are NT domain, i uses a BAT file to launch the usrmgr with account from the opp domain.

RUNAS /NETONLY /USER:<Domain_B>\<Domain_Admin_B> "C:\Program Files\Svrtools\usrmgr.exe <\\Domain_Controller_B>"

Password keyed in this command will only use to sent across the network.

I know no voice, I knew nothing about systems,
i know NUTS on networking, Therefore I dont know anything!
-----------------------------------
©2003,2004 SCHT.

 

[Nostradamus]

thanks to you as well. The runas command never crossed my mind.

/Sören