Forum Discussion
Considerations with creating an additional AD Site and linking it to another Site
1.) No
2.) Yes recommended https://docs.microsoft.com/en-us/windows-server/identity/ad-ds/plan/designing-the-site-topology , No
3.) Yes
4.) Just configure site DHCP server to hand out only local site DNS
5.) Doubtful there will be an issue here
(please don't forget to mark helpful replies)
Dave Patrick
Thank you for your feedback.
4.) I don't think this is anything that needs to be configured at the DHCP server level.
We are going to configure it in such a way that the clients of Site-B can't reach the DCs of the other site and vice versa. Next we will increase the priority of the SRV records (records with the lowest priority are used first) that contain the DCs at Site-B. This way nothing will change at Default-First-Site-Name, the clients at Site-B will have a 0.8 seconds delay during the DC Locator process because they will try to contact the DCs at Default-First-Site-Name but this is no problem.
Sounds good, you're welcome. Just make sure the sites can pass required information.
https://support.microsoft.com/en-us/help/179442/how-to-configure-a-firewall-for-domains-and-trusts