Lets say I my organization has a Class B network. 129.169.0.0/16
So I create a subnet object for 129.169.0.0/16 and associate it site A. Then my organization starts to subnet the 129.169 network, and I now have a network that needs its own site. So I create a subnet object 129.169.1.0/24 and assign it to site B. Assuming a single domain model, and site links and bridges are established to make host in either site able to authenticate and get directed to the proper DC's. A host on the 129.169.1 network will normally authenticate to DC's in Site B. And all other host on all other networks will normally authenticate to Site A. What I am trying to get at is it is okay to have a subnet object for the Network ID, and then only require subnet objects for those subnets that need to be isolated by sites. Thanks, Todd List info : http://www.activedir.org/mail_list.htm List FAQ : http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
