Recently we have installed additional domain controller in remote branch office. After this we noticed as, domain computers from head office trying to communicate (TCP- 135, 139, 389, 443, 445. UDP- 389) with branch ADC.
Because of this we are facing authentication failure or slowness from head office, also we didn't allowed communications from head office user network to branch additional domain controller (we need to make sure all head office user's & device's should communicate to head office domain controller).
Our infra details are mentioned below:
Primary DC- 192.168.10.10
Secondary DC- 192.168.1.20
Active Directory Site Name: Default-First-Site-Name
HO Client PC Networks:- 172.25.10.0/24, 172.25.11.0/24
Additional DC: 172.20.1.10
Active Directory Site Name: BRANCH01
Branch client network: 172.21.1.0/24