Re: DNS Zone Type

From: Roger Abell (mvpNOSpam_at_asu.edu)
Date: 02/10/04

Next message: Dave Marden: "Forwarders not working properly"
Previous message: Polaris: "New Dynamic IP DNS tool . I find it at the Website ' www.dnsp2p.com '"
In reply to: Ricardo: "DNS Zone Type"
Next in thread: Ricardo: "Re: DNS Zone Type"
Reply: Ricardo: "Re: DNS Zone Type"
Messages sorted by: [ date ] [ thread ]

Date: Tue, 10 Feb 2004 07:57:15 -0700

"Ricardo" <anonymous@discussions.microsoft.com> wrote in message
news:85A8A65F-9188-49D4-9637-6804A642BC52@microsoft.com...
> I have a Linux (BIND) DNS Server installed on my network that solves
Internet names. Now I want to deploy Active Directory and a WIndows 2000 DNS
Server to improve logon spent time.
> For the best performance, this new Windows 2000 DNS Server must have a
Secondary DNS Zone for the BIND DNS, or it must have a AD Integrated DNS
zone with a forwarder to the BIND DNS Server ?

Actually, it should hold the zone(s) used to support AD, and AD integrated
with secured updates enabled is recommended. It may also either hold a
secondary copy of the zones on Bind, use that Bind as a Forwarder, or both
in order to resolve the zone(s) that are primary on that Bind.
Assuming the zones on that Bind are properly registered and delegated
with/by their parent, then neither of these are needed. It could use a
different DNS as a Forwarder, or none and just use
root hints.

> If the answer is to configure a Forwarder with a AD Integrated zone, will
clients computer be able to access internet, once they will be configured
with the IP of this server for DNS settings?
>
Think of the path the query takes, the so-called resolution path. Is there
an available answer to the query from a DNS server along that path ? It
you use your Bind as a forwarder, then internet
access via name may be slowed to the speed of the Bind acting as a
forwarder, and if you disable use of root hints on the Windows DNS then all
outside access is fully dependent on the quality of you Bind.

> Thanks,

Next message: Dave Marden: "Forwarders not working properly"
Previous message: Polaris: "New Dynamic IP DNS tool . I find it at the Website ' www.dnsp2p.com '"
In reply to: Ricardo: "DNS Zone Type"
Next in thread: Ricardo: "Re: DNS Zone Type"
Reply: Ricardo: "Re: DNS Zone Type"
Messages sorted by: [ date ] [ thread ]

Relevant Pages

Re: More Event ID 5781
... > Why cant i run both BIND and DDNS on windows server for AD? ... is the DC is going to be able to register in the ... The DC is going to try to register it's records in what ever DNS server it ...
(microsoft.public.windows.server.dns)
Re: Issue with DNS failover in domain
... The forwarders on DC1 and DC2 are pointing to another DNS server, ... As far as how the machine's resolver service behaves when a DNS server is down, ... Information on how a DNS Forwarder time-out works with using multiple Forwarder: ...
(microsoft.public.windows.server.dns)
Re: DNS forwarders
... I appreciate your update and response, and I am glad to hear that the ... >Although DNS resolution has been working fine on my network up to this ... >servers would "know" to look to another DNS server on the domain. ... Remove the ISP forwarder entries from all the remote sites and replace ...
(microsoft.public.windows.server.dns)
Re: MS Update Breaks External DNS again
... have to manually update and restart to make DNS work). ... am putting up a test server and installing BIND on it and learn BIND, ... If BIND had a decent GUI it ... So far there is no word of an update, other than using a Forwarder. ...
(microsoft.public.windows.server.dns)
BIND 8 EOL and BIND 8 DNS Cache Poisoning (Amit Klein, Trusteer)
... BIND 8 EOL and BIND 8 DNS Cache Poisoning ... this is a different attack from BIND 9 DNS cache poisoning. ... BIND 8 caching DNS server and force users who use this DNS server to ...
(Bugtraq)