Fw: [ActiveDir] Issue creating forest trusts

[[EMAIL PROTECTED]]

Title: Issue creating forest trusts

long shot but are there any isa or nokia/checkpoint units between the boxes, we had to get a patch on the nokia unit because our domain controllers wouldn't communicate correctly because of rpc failues after loading sp1 for windows 2003. There was a change in how the RPC communication works in sp1 and isa 2004 and checlpoint firewalls rpc filter need to be updated.

>----Original Message----
> From: [EMAIL PROTECTED]
> Date: 09/03/2006 15:13
> To: ActiveDir@mail.activedir.org
> Subj: [ActiveDir] Issue creating forest trusts
>
>
>

>Hello all,

>I'm running into this issue where I want to create a forest trust on Windows 2003 with FFL2 level in both forests. When I enter the domain FQDN in the wizard, it tell me it cannot establish an RPC connect to server X. So I grabbed a network trace on both sides…It does a DNS lookup and finds a DC in the target forest, pings it and send 1 microsoft-DS TCP packet. I can't see inside that one and I’m curious what it's doing, well whatever it does fails because it does the same DNS lookup again and try to authenticate via NTLM as my ID in the other forest so of course it will get denied and stops. Any words of wisdom on what going on? Thanks!

>-Brandon