1) Domain A and Domain B is seperated by an ADSL WAN with the weakest bandwidth at approx. 256kb
2) all communications between A and B takes place over a VPN over the WAN dscribed above
3) All DCs in both domains are in native mode and are windows 2000 server SP3, there are TWO DCs in each domain
4) trust relationship appear to be created when seen from AD Domains and Trust Tools
this is where our trouble starts:
we used to have a working trust relationship between the domain, it was very very slow in network response time when browsing the other domain through Network Neighbourhood, but hey. it worked!!
then our trouble started.. peridodically through out the day we'd get errors like "no logon servers available"
so we thought we'd remove the trust and re-create it, but we haven't been able to get authenticate into the other network since.
some more facts: when in either domain's DC and execute "nltest /sc_query:<other Domain Name>",
sometimes we get success and other times we get ERROR_NO_LOGON_SERVERS
but running netdom on any of the DCs will produce "secure channel from <DC Name> to the domain <THe other domain> has been verified.
any suggestions?
i think it might have something to do with the outbound of the ADSL link which currently stands at 256kb, but have no prove of it.
i've tried to adjust the "expectDialUpDelay" registry to say 300 seconds and all that seem to do is slow the startup time of the DC to a crawl.
thanx in advance
2) all communications between A and B takes place over a VPN over the WAN dscribed above
3) All DCs in both domains are in native mode and are windows 2000 server SP3, there are TWO DCs in each domain
4) trust relationship appear to be created when seen from AD Domains and Trust Tools
this is where our trouble starts:
we used to have a working trust relationship between the domain, it was very very slow in network response time when browsing the other domain through Network Neighbourhood, but hey. it worked!!
then our trouble started.. peridodically through out the day we'd get errors like "no logon servers available"
so we thought we'd remove the trust and re-create it, but we haven't been able to get authenticate into the other network since.
some more facts: when in either domain's DC and execute "nltest /sc_query:<other Domain Name>",
sometimes we get success and other times we get ERROR_NO_LOGON_SERVERS
but running netdom on any of the DCs will produce "secure channel from <DC Name> to the domain <THe other domain> has been verified.
any suggestions?
i think it might have something to do with the outbound of the ADSL link which currently stands at 256kb, but have no prove of it.
i've tried to adjust the "expectDialUpDelay" registry to say 300 seconds and all that seem to do is slow the startup time of the DC to a crawl.
thanx in advance