Re: Any suggestion on DNS setup

From: Herb Martin (news_at_LearnQuick.com)
Date: 08/09/04 

Date: Mon, 9 Aug 2004 09:06:17 -0500

"tony wong" <x34@hknet.com> wrote in message
news:##Ns1WhfEHA.644@tk2msftngp13.phx.gbl...
> Yes, it is only one active directory domain, only one namespace for these
2
> LANs(can i say it is one LAN cos they are on the same segment IP range)
> thanks a lot.

Sure. It's one LAN when you have no "routers" or even
if you have multiple segments/subnets with Ethernet
connections must people call that a LAN.

If you have them "BRIDGED" is it in principle a single
SEGMENT/SUBNET, not just a single LAN (which might
be multiple subnets.)

> > > How should i set LAN B at its best efficiency?

For best "efficiency" you usually wouldn't BRIDGE them
but if it meets you needs then there is nothing wrong with
bridging in principle.

> > > a. local domain records only, route unknown DNS request
> > > to primary DNS

You cannot "route" DNS (term isn't used) but must either use
"recursion" (top down searches) or "forwarding" (first DNS
forwards to another which does the actual recusion).

You also want to MENTALLY separate the following DNS server goals:

    1) Helping your user resolve (all) records
    2) Helping the "world of" users resolve your resources

They are TWO SEPARATE jobs even if the same server does both
(common.)

> > > b. local domain records only, route unknown DNS request
> > > to primary DNS (1st DNS) and then ISP DNS server (2nd DNS)
> > > c. local domain records & its own internet web site,
> > > route unknown DNS request to primary DNS.
> > > d. local domain records & its own internet web site,
> > > route unknown DNS request to primary DNS (1st DNS) and
> > > then ISP DNS server (2nd DNS). 

-- 
Herb Martin
>
>
> "Kevin D. Goodknecht Sr. [MVP]" <admin@nospam.WFTX.US> ¦b¶l¥ó
> news:O9IZazgfEHA.3348@TK2MSFTNGP12.phx.gbl ¤¤¼¶¼g...
> > In news:OFXvwbgfEHA.708@TK2MSFTNGP09.phx.gbl,
> > Tony <x34@hknet.com> wrote their comments
> > Then Kevin replied below:
> > > i have 2 LANs on the same seqment (same IP range) by
> > > bridge.
> > >
> > > each LAN (A & B) has a DNS server, LAN A is direct
> > > connecting with internet.
> > >
> > > LAN A has primary DNS server w/ a number of domains
> > > (local + its owned internet web site).
> > > IF workstations in LAN A find no record in primary DNS
> > > server, then the primary DNS will forward to ISP DNS
> > > server.
> > >
> > > LAN B has secondary DNS server w/ only local domain
> > > record.  the DNS server was set up by wizard.  It only
> > > copied the local domain records by sychonization with
> > > primary DNS server.
> > >
> > >
> > > it seems b & d (DNS request to primary DNS and ISP DNS
> > > server) are no use because request goes to primary DNS,
> > > then if there is no record, the primary DNS server will
> > > route to ISP DNS server.  therefore DNS server at LAN B
> > > never route record to ISP DNS server (2nd DNS)
> > >
> > > is it right?  Grateful for any suggestion.  thanks a lot.
> >
> > There is one big unknown, is Active Directory involved and if it is, is
> this
> > one Active Directory domain or two?
> > If so, how is the AD namespace for these two "LANs" designed?
> > The answer to this will make a bigger impact than anything you
mentioned.
> >
> > -- 
> > Best regards,
> > Kevin D4 Dad Goodknecht Sr. [MVP]
> > Hope This Helps
> > ================================================
> > -- 
> > When responding to posts, please "Reply to Group"
> > via your newsreader so that others may learn and
> > benefit from your issue, to respond directly to
> > me remove the nospam. from my email address.
> > ================================================
> > http://www.lonestaramerica.com/
> > ================================================
> > Use Outlook Express?... Get OE_Quotefix:
> > It will strip signature out and more
> > http://home.in.tum.de/~jain/software/oe-quotefix/
> > ================================================
> > Keep a back up of your OE settings and folders
> > with OEBackup:
> > http://www.oehelp.com/OEBackup/Default.aspx
> > ================================================
> >
> >
>
>

Relevant Pages

  • Re: No Logon Server Available
    ... but I am fairly new to active directory. ... >Are your computers members of Active Directory domain? ... >your internal Active Directory DNS server and not your ISP. ... Since you told your clients to use your ISP DNS and your ISP ...
    (microsoft.public.windows.server.networking)
  • RE: Secure dynamic updates on Windows 2003 DNS Server
    ... authoritative for the zone that contains the Active Directory domain name. ... Before installing Active Directory, we must install and configure a DNS server that is ...
    (microsoft.public.platformsdk.security)
  • Re: Any suggestion on DNS setup
    ... Yes, it is only one active directory domain, only one namespace for these 2 ... LANs(can i say it is one LAN cos they are on the same segment IP range) ... >> IF workstations in LAN A find no record in primary DNS ... the DNS server was set up by wizard. ...
    (microsoft.public.win2000.dns)
  • Re: DCDiag /Test:DNS Root hints list has invalid root hint server
    ... Active Directory LDAP Services Check ... Test omitted by user request: ... The Active Directory zone on this DC/DNS server was ... Forwarders are not configured on this DNS server ...
    (microsoft.public.windows.server.dns)
  • Re: DNS Errors
    ... Once I actually used the nslookup command correctly, ... > The DNS server was unable to complete directory service enumeration of zone ... This DNS server is configured to use information obtained ... Check that the Active Directory is functioning properly and repeat ...
    (microsoft.public.windows.server.sbs)