The environment:
IP 200.x.y.zx (DMZ ) = W2K Server
IP 10.x.y.z (invalid, internal) = NT4 PDC Domain Server
Firewall: Novell Border Manager - 3 interfaces
DMZ <--> INternal = ROUTING (not NATed, i've tested and PING appears on
netmon with related addresses)
The problem:
Event ID 5719 NETLOGON (the w2k is now, a member of the NT4 domain, but the
Join was mande on LAN, with internal address). After the Join the W2K was
moved back to DMZ and the erros appears. If a Disjoin is made, the w2k
machine cannot join to the domain on DMZ, only if connected via internal LAN
I've captured with netmon and various SAM LOGON requests are made, but no
response back.
The article:
http://www.microsoft.com/technet/arc...g/a01_dom.mspx explains:
The remainder of the frame, approximately 110 bytes, represent the NETLOGON
portion of the frame. This frame has the following details:
• Operation code of "SAM LOGON request from client".
OK, i've captured via NETMON, but...
A domain controller in the trusted domain will then respond with a frame to
indicate success to the SAM LOGON request. This frame:
• Is approximately 295 bytes in size, depending on computer and domain names.
• Is directed to the client (primary domain controller) that initiated the
original request at the hardware, IP and NetBIOS layers.
• SMB Path name of "\MAILSLOT\NET\NTLOGON".
The above-described answer never occurs...
i have several SAM LOGON requests but no answers. The captures were made on
the PDC itself.
Linear Mode
