Single AD/DHCP/DNS Server - multiple subnets

LeRouteur

11/4/22, 11:08 AM

I'm subnetting the small network of our business for management and security reasons. Prior to this I had:

172.16.1.0/24

And now I want this:

172.16.1.0/24 -> corporate LAN
172.17.0.0/24 -> management of servers
172.17.1.0/24 -> hosting - managed services
172.17.2.0/24 -> game servers hosting
172.17.127.0/24 -> storage resources
172.17.128.0/20 -> hosting - servers (VPS, apps, etc)

I have a pfSense router between those subnets. All of the subnets have access to the Internet.

What I want to know is if there is a possibility to have one Active Directory, DNS and DHCP service running on a single server in the managed services subnet (172.17.1.0/24), and make it reachable by the subnets.

I already looked at DHCP relay, I guess I'll have to use it, but what about DNS and Active Directory? Anything to do on the router?

127

0 + 5

domain-name-system

subnet

djdomi

11/4/22, 4:32 PM

What is the issue? Servers don't use in generally a DHCP lease. You only need to take care of the routing of each net, in case you only use CIDR 24 instead of 16 on a 172 network. And the Shortly answer would be, it may be possible depends on the use. but since it looks a bit offtopic be more specific to your question.

LeRouteur

11/5/22, 9:17 AM

Sure, servers don't use DHCP, but since I want the created VPS to be reachable after their installation, I have to use DHCP. Regarding the routing, it's working fine, I can reach each subnet without any trouble. But what about the DNS? Is there a DNS relay or something like this?

djdomi

11/5/22, 10:25 AM

You have to decide, either you want to use the AD with DNS and DHCP or use a external DHCP.

LeRouteur

11/6/22, 11:13 AM

I said I want to use AD/DHCP/DNS on a single server. The question is clear imho: what do I need to do to spread the usage of those services across the subnets I listed above?

djdomi

11/6/22, 12:35 PM

If you would use AD you can descripe and use Locations to split the Subnets. But for This you have to use only AD/DNS/DHCP instead of using a relay on Windows Site.

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: Single AD/DHCP/DNS Server - multiple subnets

TH: เซิร์ฟเวอร์ AD/DHCP/DNS เดียว - เครือข่ายย่อยหลายเครือข่าย

RO: Server AD/DHCP/DNS unic - mai multe subrețele

RU: Один сервер AD/DHCP/DNS — несколько подсетей

VI: Máy chủ AD/DHCP/DNS đơn - nhiều mạng con

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.