Re: parent - child DNS in Active Directory

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

From: "A, Deji" <deji@xxxxxxxxxxxxx>
Date: Fri, 31 Oct 2008 08:51:13 -0700

No, Florian is saying that you probably have a * (wildcard) record in your internaldomain.com zone. This causes your lookups to ALWAYS append internaldomain.com to EVERY lookup. This, in turn, makes EVERY lookup go to your parent DNS server. You need to delete the * record, and your lookup should behave as expected.

Deji

"kbing" <kbing@xxxxxxxxxxxxxxxxx> wrote in message news:%23yHraU2OJHA.3508@xxxxxxxxxxxxxxxxxxxxxxx

So are you saying this is supposed to behave this way....where the child DNS server should be pushing Internet based queries thru the parent domains DNS servers....even though the forwarder is configured for the child domain ISP DNS and conditional forwarder specifies the parent domain?

"Florian Frommherz [MVP]" <florian@xxxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message news:uGdSiiyOJHA.1744@xxxxxxxxxxxxxxxxxxxxxxx
Howdie!

kbing wrote:
Thanks. I have it setup as you said however when I run a nslookup with debug turned on it still uses the parent DNS servers to resolve external domain names. Here is the output. Notice the primary name server resolving www.yahoo.com <http://www.yahoo.com> is d01dc1.internaldomain.com.....not the ISP's nor the child domain DNS server.

It appends the domain name to your query. www.yahoo.com (who's this yahoo everyone's talking about?) gets www.yahoo.com.internaldomain.com and that's a domain the parent DNS would know.

Try querying www.yahoo.com. (notice the dot in the end of the address).

cheers,

Florian
--
Microsoft MVP - Group Policy
eMail: prename [at] frickelsoft [dot] net.
blog: http://www.frickelsoft.net/blog.
Maillist (german): http://frickelsoft.net/cms/index.php?page=mailingliste

Follow-Ups:
- Re: parent - child DNS in Active Directory
  - From: kbing

References:
- parent - child DNS in Active Directory
  - From: news.microsoft.com
- Re: parent - child DNS in Active Directory
  - From: Jorge Silva
- Re: parent - child DNS in Active Directory
  - From: Florian Frommherz [MVP]
- Re: parent - child DNS in Active Directory
  - From: kbing

Prev by Date: Re: Transitive Forest trust
Next by Date: Re: Extracting email addresses from an A/D group
Previous by thread: Re: parent - child DNS in Active Directory
Next by thread: Re: parent - child DNS in Active Directory
Index(es):
- Date
- Thread

Relevant Pages

RE: prisoner.iana.org
... recall that there are both forward lookup zones and reverse lookup ... On a forward lookup zone, you'd look up a host name and get an IP ... Because 2K and later systems try to register both their forward and reverse ... It does that by finding out which DNS server is the primary DNS ...
(Incidents)
Re: SOLVED -- Re: Problems with a BIND server
... The zone files there are built from scripts from a database, and there are problems with the SOA, NS, and MX records. ... I thought things worked correctly when you queried the DNS server for home.htt, and the problem was only when you queried the htt server. ... If you look at that TCPDUMP use see the first lookup of say, wiki.home.htt which returns the A record. ...
(comp.protocols.dns.bind)
Re: recursive query
... >> Have you tried giving the DNS server a forwarder? ... lookup, ... If ISA is in the mixed make sure the ISA has rules to support the type of ...
(microsoft.public.win2000.dns)
Re: FEATURE(`require_rdns) : 451 reaction to FORGED [WHY?]
... On a dual hosted system, it sometimes happens that the forward ... being checked in the reverse lookup. ... came from the correct DNS server for the domain, ... as a glue record from the root dns servers. ...
(comp.mail.sendmail)
Re: Help - Config of forwarders
... > purpose" of a DNS server) the PARENT DNS server must ... "Delegate to" means to tell the Parent DNS that the domain name ... > 2) Help you clients resolve all names ...
(microsoft.public.win2000.dns)