Your VPN is wrong to start with.
It cannot be "one-way". What you created is a Remote Access VPN with the
"calling" RRAS box acting as a Remote Access VPN User. This is not the
right type of VPN.
You need a Site-to-Site VPN (aka Router-to-Router VPN). Each RRAS box on
each end calls each other using specially named interfaces (2 calls, 1 in
each direction). The connection is two-way (yes, it *has* to be). You
don't control access with the VPN connection,..all it is is a glorified
"cable",...you control access by NTFS settings and Application Permission
settings when particular Applications have such things built into them.
The built in Help in RRAS should have all the details to walk you through
creating a Site-to-Site VPN,...if it doesn't there are probably tons of that
stuff on
www.microsoft.com .
For the two sites to interact with each other they need to use the same DNS
and WINS services or at least have each other's "details" duplicated in
their own DNS and WINS. WINS can have Push/Pull Partners and DNS can have
Zone Transfers to automatically replicate the details back and forth.
--
Phillip Windell [MCP, MVP, CCNA]
www.wandtv.com
The views expressed are my own (as annoying as they are), and not those of
my employer or anyone else associated with me.
-----------------------------------------------------
"James L Williams" <(E-Mail Removed)> wrote in message
news:(E-Mail Removed)...
>I am not running WINs on either domain. The DNS is on the same machine as
>the PDC, everything is on one server for the Win2000 Domain.
>
> How do I do zone replication on the Win 2000 DNS?
>
> Thanks
>
> "Jeremy Church" <(E-Mail Removed)> wrote in message
> news:OeMC$(E-Mail Removed)...
>> If you are running WINS, setup WINS replication. This is assuming you
>> don't have any duplicate names between the two domains.
>>
>> In DNS, setup the Windows 2000 domain name as a secondary DNS zone with
>> the primary DNS server being the DNS box serving the Windows 2000 domain.
>> On the Windows 2000 side, you have to setup the DNS zone to allow for
>> zone replication to the DNS server on the Win2k3 domain. This will
>> probably take care of your issue.
>>
>> "James L Williams" <(E-Mail Removed)> wrote in message
>> news:(E-Mail Removed)...
>>> Hello,
>>>
>>> I am not an expert with Win 2003 and 2000 server, but I have the
>>> following that I have setup.
>>> I have an Win 2000 server domain at one office, and I have another
>>> seperate domain in another office, which is a Win 2003 domain. They are
>>> connected together through VPN connection of the internet. I setup the
>>> RAS on the Win 2003 system, which accesses the Win2000 system domain.
>>> It is one way, I.E. My win 2003 domain computers can access the ones on
>>> the Win2000 system domain, however, the Win 2000 domain computers can't
>>> access the Win 2003 domain computers. This is how I want it.
>>>
>>> The problem that I am having, is DNS resolving. I can't use the names
>>> of computers, which are on the Win2000 domain, from the Win 2003 domain.
>>> Right now I have statically added them in a separate forest on the
>>> Win2003 domain controller, and entered in static IP address for those
>>> computers. However if the Win2000 computers IP addresses change, then I
>>> have to change them in my DNS on the Win2003 server. Is there a way
>>> that I can tell my Win2003 DNS queries, that if a computer name with the
>>> suffix of the Win2000 domain appended, to have the Win2000 DC DNS to
>>> resolve the name, so I don't have to keep updating the Win2003 DNS
>>> entries every time the IP's change on the Win2000 side?
>>>
>>> Also, how can I get the explorer browses to see the computers on the VPN
>>> Win2000 domain in the Network places section?
>>>
>>> Thanks,
>>>
>>> James.
>>>
>>
>>
>
>
Similar Threads
Linear Mode
