Hi All!
We have a single master domain spread over two sites. "Site1" has 3 DCs
(DC1, DC2, DC3). DC1 holds the FSMO roles. DC2 is a GC. "Site2" has only
1 DC (DC4). It is also a GC. Because of the slow link between Site1 and
Site2 and with firewalls on each end (what fun!), we are trying to assign
Bridgehead servers on each site. With Site2 only having 1 DC, it (DC4)
should automatically be the bridgehead server for that site. We have
identified DC2 as the bridgehead server for Site1.
Firewall logs indicate that DC4 still wants to communicate with DC1,
along with DC2. In addition, replmon (on DC2), when asked to show
bridgehead servers for the enterprise, shows the following:
Inbound Outbound
DC4 X X
DC1 X
DC2 X
Intrasite transport is IP. "Bridge all site links" has been unchecked on
the Transport properties dialog box. All respective DCs have been rebooted.
We really would like DC4 to communicate with DC2 only. Can anyone tell me
what we're missing? I have come across Technet articles that talk about
restricting RPC calls to a specific range of ports as a workaround for
dynamic RPC regarding AD and FRS replication. Anyone have any experience
with doing this?
Also, with all the email going on about global catalog servers, I thought
the rule was that you DIDN'T want to run a GC on an DC that holds the
Infrastructure Master role.
Any thoughts are appreciated! Thanks.
Mike Thommes
Argonne National Laboratory
List info : http://www.activedir.org/mail_list.htm
List FAQ : http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
