I am having a truly thorny problem.
we have a domain set up over 2 sites and we use VPN tunnels to connect the 2 sites.
SITE 1 : 192.168.1.0/24
SITE 2 : 192.168.2.0/24
The sites have 2 Cisco PIX506e each that are set up in a DMZ configuration. the internal router provides 1 to 1 translation from the internal subnet addresses to a DMZ address so servers at site one see the servers at site 2 as 192.168.3.x and site 2 servers see the the site 1 servers as 192.168.4.x addresses.
The servers are also multi-homed.
our primary DC is located at site one and the backup is located at site 2
DNS services run on each DC and are configured in a AD integrated multi-master mode.
The problem is the primary DNS server is adjusting the NS records for the site 2 server to point to the wrong NIC address. this causes a problem with AD replication, DFS replication, and DNS replication. I've manually adjusted the Address so it is correct and udated the DNS records but the server just puts them back.
At this point My DC's have not replicated in several weeks and from a DR scenario I'm going to be in a world of hurt If I don't get this corrected.
My gut tells me I should set up independent zones for each site and create backup DNS servers for each.
Let me know if this isn't enough info to define the problem and I'll try to clarify. TIA for you comments
Microsoft Windows (other)