Domain name is resolving to DC that is not accessable for VPN users

Trashcan

12/12/23, 9:25 PM

Problem is when one (and only one) VPN user tries to resolve our domain name (xxx.local), it is resolving to a DC that is not accessible to VPN users, and not the ones that are accessible.

We have 2 sites with a point-to-point connection between them and a DC for each. VPN comes in though site A. VPN traffic is not allowed from site A to site B. When one user tries to resolves our domain name though VPN, it is pointing to the DC in site B, instead of the one in site A. Typically, the domain name will point to the DC that is on the same subnet as the user. Each site is also on its own subnet.

I have tried forcing the domain name to point to the correct DC by editing the users host file and this did not help. Also have deployed the user a new computer and still have the same result.

Any insight as to why this might be?

1 + 0

networking

vpn

domain

internal-dns

Score:2

Server

longneck

12/12/23, 9:52 PM

In Active Directory Sites and Services, you have to define a subnet for the VPN user, and assign it to the site that has the DCs you want them to talk to.

+ 0

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: Domain name is resolving to DC that is not accessable for VPN users

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.