RE: [ActiveDir] DNS issues?

[Rutherford, Robert]

Title: Message

Sounds like you are allowing DNS above your encrypt rule on your firewall... check it. May also be worth setting up no NAT between your local lans.   BR,   Rob -----Original Message----- From: Todd L. Graham [mailto:[EMAIL PROTECTED] Sent: 13 May 2004 13:30 To: [EMAIL PROTECTED] Subject: [ActiveDir] DNS issues? I have a problem with my DNS over the WAN and VPN.  Here is the issue.  For some reason DNS will not resolve names over the WAN, or VPN.  I can only connect to resources by IP address.  This problem started when I upgraded my network in January.  We switched to a Cisco IP phone system along with all Cisco gear (VPN concentrator, PIX firewall, switches, routers…lots of money spent).  We also upgraded our network at the same time from W2k to Server 2003.  We have a Point to Point T between our sights and a T1 for internet access here.  We have about 30 people who VPN into the network on the VPN concentrator.  Our AD (I actually run all IT for 3 companies, same owners) is one Root domain with 3 child domains 1 for each company.  All common resources and user accounts are in the root. Computer accounts and private resources are in each child domain.  The child domains share nothing. Due to the phone system we have several V-LAN’s one for voice, VPN, Guest, and computer network.   When I am at the other location I can’t browse the network, or attach to mapped drives from my logon script (they don’t even appear).  I can only attach to resources if I create a new mapped drive by IP address.  When I do an IP config I get all the right DNS servers listed.  I can only ping them by IP address.  The same situation happens when I VPN from home.  We had DNS only on the network.  My Cisco vendor told me it’s not their gear.  I added WINS to see if this would help…it did not. Any suggestions on what I could have configured incorrectly?  Could it be the Cisco routers?           Thank you for the help!      Todd Graham IT Manager Urell Inc. 617-600-9355 [EMAIL PROTECTED]   The information transmitted is intended only for the person or entity to which it is addressed and may contain confidential and/or privileged material. Any use (including retransmission or copying) of this information by persons or entities other than the intended recipient is prohibited. If you are not the intended recipient of this transmission, please contact the sender and delete the material from any computer. The sender is not responsible for the completeness or accuracy of this communication as it has been transmitted over a public network. Any replies to this email may be monitored by the MCPS-PRS Alliance for quality control and other purposes.