https://community.cisco.com/t5/cisco-catalyst-center/add-computer-to-a-domain-trough-nat/m-p/3790235#M643 <P>Hi.</P><P>I have a firewall ASA5516-X&nbsp; and have this issue that i don't know if it could be accomplished.</P><P>I have read in a blog that this can't be done, but first I would like to ask here.</P><P>&nbsp;</P><P>I have 2 firewalled networks.</P><P>Over PORT1 I have a network that has a Windows Server 2016 Domain Controller with its DNS.</P><P>Over PORT2 I have another firewalled network with different range.</P><P>&nbsp;</P><P>I have created an Access Rule in between the 2 subnetwork in which I permit all the traffic for all of these ports</P><P>&nbsp; <A href="https://support.microsoft.com/en-us/help/179442/how-to-configure-a-firewall-for-domains-and-trusts" target="_blank">https://support.microsoft.com/en-us/help/179442/how-to-configure-a-firewall-for-domains-and-trusts</A></P><P>and a NAT .</P><P>&nbsp;</P><P>- I can ping from 10.10.10.20 to 10.10.10.10</P><P>- I modified on PC 10.10.10.20 the file windows\drivers\hosts a line to say that TESTING.COM = 10.10.10.10</P><P>so I can ping TESTING.COM</P><P>&nbsp;</P><P>But when I try to add PC to the domain TESTING.COM it fails.</P><P>"An existing connection was forcibly closed by the remote host."</P><P>(error code 0x00002746 WSAECONNRESET)</P><P>&nbsp;</P><P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="Capture.PNG" style="width: 634px;"><img src="https://community.cisco.com/t5/image/serverpage/image-id/28900i1B328F0FF84BA7FF/image-size/large?v=v2&amp;px=999" role="button" title="Capture.PNG" alt="Capture.PNG" /></span></P><P>&nbsp;</P><P>Many thanks</P><P>&nbsp;</P><P>&nbsp;</P> Sat, 09 Mar 2019 01:30:22 GMT Tacko 2019-03-09T01:30:22Z https://community.cisco.com/t5/cisco-catalyst-center/add-computer-to-a-domain-trough-nat/m-p/3790235#M643 <P>Hi.</P><P>I have a firewall ASA5516-X&nbsp; and have this issue that i don't know if it could be accomplished.</P><P>I have read in a blog that this can't be done, but first I would like to ask here.</P><P>&nbsp;</P><P>I have 2 firewalled networks.</P><P>Over PORT1 I have a network that has a Windows Server 2016 Domain Controller with its DNS.</P><P>Over PORT2 I have another firewalled network with different range.</P><P>&nbsp;</P><P>I have created an Access Rule in between the 2 subnetwork in which I permit all the traffic for all of these ports</P><P>&nbsp; <A href="https://support.microsoft.com/en-us/help/179442/how-to-configure-a-firewall-for-domains-and-trusts" target="_blank">https://support.microsoft.com/en-us/help/179442/how-to-configure-a-firewall-for-domains-and-trusts</A></P><P>and a NAT .</P><P>&nbsp;</P><P>- I can ping from 10.10.10.20 to 10.10.10.10</P><P>- I modified on PC 10.10.10.20 the file windows\drivers\hosts a line to say that TESTING.COM = 10.10.10.10</P><P>so I can ping TESTING.COM</P><P>&nbsp;</P><P>But when I try to add PC to the domain TESTING.COM it fails.</P><P>"An existing connection was forcibly closed by the remote host."</P><P>(error code 0x00002746 WSAECONNRESET)</P><P>&nbsp;</P><P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="Capture.PNG" style="width: 634px;"><img src="https://community.cisco.com/t5/image/serverpage/image-id/28900i1B328F0FF84BA7FF/image-size/large?v=v2&amp;px=999" role="button" title="Capture.PNG" alt="Capture.PNG" /></span></P><P>&nbsp;</P><P>Many thanks</P><P>&nbsp;</P><P>&nbsp;</P> Sat, 09 Mar 2019 01:30:22 GMT https://community.cisco.com/t5/cisco-catalyst-center/add-computer-to-a-domain-trough-nat/m-p/3790235#M643 Tacko 2019-03-09T01:30:22Z