RE: [ActiveDir] DNS issues?

[Mulnick, Al]

DNS is set to replicate with the root?  Is it AD integrated?   What result do you get when you use NSLOOKUP from a child domain workstation?      What does your DNS hierarchy look like?  Is it standard parent/child?  etc. child_domain.root_domain.com or something else?   When you say you're replicating zones, are your transferring them both directions?    Lots of questions, but need more answers to figure this out better.   Al From: Todd L. Graham [mailto:[EMAIL PROTECTED] Sent: Thursday, May 13, 2004 12:51 PM To: [EMAIL PROTECTED] Subject: RE: [ActiveDir] DNS issues? When I do an IP config I'm getting the correct IP addresses listed for the DNS servers.  DNS is set to have the child domains replicate with the root.    Todd From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Roger Seielstad Sent: Thursday, May 13, 2004 9:26 AM To: [EMAIL PROTECTED] Subject: RE: [ActiveDir] DNS issues?   When you say you're getting the "correct" DNS servers, what do you mean?   Also, are you replicating DNS zones for the child domains between sites? It strikes me like what's really happening is that your child domains don't hold each other's DNS zones, so you can only see the local info.   -------------------------------------------------------------- Roger D. Seielstad - MTS MCSE MS-MVP Sr. Systems Administrator Inovis Inc.     From: Todd L. Graham [mailto:[EMAIL PROTECTED] Sent: Thursday, May 13, 2004 8:30 AM To: [EMAIL PROTECTED] Subject: [ActiveDir] DNS issues? I have a problem with my DNS over the WAN and VPN.  Here is the issue.  For some reason DNS will not resolve names over the WAN, or VPN.  I can only connect to resources by IP address.  This problem started when I upgraded my network in January.  We switched to a Cisco IP phone system along with all Cisco gear (VPN concentrator, PIX firewall, switches, routers...lots of money spent).  We also upgraded our network at the same time from W2k to Server 2003.  We have a Point to Point T between our sights and a T1 for internet access here.  We have about 30 people who VPN into the network on the VPN concentrator.  Our AD (I actually run all IT for 3 companies, same owners) is one Root domain with 3 child domains 1 for each company.  All common resources and user accounts are in the root. Computer accounts and private resources are in each child domain.  The child domains share nothing. Due to the phone system we have several V-LAN's one for voice, VPN, Guest, and computer network.   When I am at the other location I can't browse the network, or attach to mapped drives from my logon script (they don't even appear).  I can only attach to resources if I create a new mapped drive by IP address.  When I do an IP config I get all the right DNS servers listed.  I can only ping them by IP address.  The same situation happens when I VPN from home.  We had DNS only on the network.  My Cisco vendor told me it's not their gear.  I added WINS to see if this would help...it did not. Any suggestions on what I could have configured incorrectly?  Could it be the Cisco routers?           Thank you for the help!      Todd Graham IT Manager Urell Inc. 617-600-9355 [EMAIL PROTECTED]