How to do without prescribing a route?

C

Cyril2017-05-03 12:52:31

Active Directory

Cyril, 2017-05-03 12:52:31

The company has 2 offices. One in St. Petersburg and the other in Moscow (branch).
Petersburg subgrid 10.10.100.0/24 .
Moscow subnet 192.168.100.0/24 .
Between subnets IPSec tunnel. Through this tunnel the subgrids are accessible and visible to each other.
Somedomain.local domain The
main domain controller is located in St. Petersburg. Address 10.10.100.254 . There is a subordinate domain controller in Moscow. His address is 192.168.100.254 .
The address of Mikrotik in Moscow is 192.168.100.1 .
When I try to add a workstation to the domain (somedomain.local) in the Moscow office, then before that I have to register a permanent routeroute add 10.10.100.0 mask 255.255.255.0 192.168.100.1 -p on it.
Otherwise, the machine is crookedly entered into the domain and errors occur.
For example, an error occurs when the machine is entered into the domain itself:

The machine seems to be in the domain, but then I cannot log in to it through any domain account:

Question. Is it possible to do something so that workstations can be entered without prescribing permanent routes to the subnet with the main domain controller?
Without a PDC, I can't bring machines into the domain.

Reply

Answer the question

In order to leave comments, you need to log in

2 answer(s)

V

Vladimir Dubrovin, 2017-05-03
@z3apa3a

So where does the default route look to you? If to 192.168.100.1, then no additional route is required. If to another router, write a route to the 10.10.100.0/24 network on this router via 192.168.100.1. If you do not have a default gateway, then you cannot get rid of adding a route, but you can distribute the route via DHCP (the parameter is called classless static route).

I

Ivan, 2017-05-03
@LiguidCool

Obviously in branch DNS is crookedly configured.