Why should you create trust between production and dev.
Create a independent AD forest for dev, use any of the hardware router to do the routing between dev - prod subnet. Create a gateway server (jump server, will used to access two different environemnt using either windows TS or CItrix). access to the dev should be restricted by either gateway or dev AD.