Re: Should DNS forwarders to the internet point to each other?

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

> Should each DC be configured with a forwarder entry to the other as the
> first entry?


No. Set your DNS zone to AD integrated. All DNS info will be replicated
securely to every DC in the domain with DNS installed.

Forwarders set up a system where your clients query your AD DNS server for a
resource.
Say your AD domain name is mycompany.com. Your DNS zone should be
mycompany.com. Queries for anything "mycompany.com" gets resolved by your AD
DNS server. Any other query gets sent to the server setup in the forwarders
tab (*anything* other than "mycompany.com")

What you are purposing is to forward the query between the two servers.
Server one gets a query for yahoo.com, it can't find it in the zone
"mycompany.com" so it forwards the request to the server on the forwarder
list (server 2), which is another server that *only* knows about
"mycompany.com" and it will forward the request for yahoo.com to the server
on the forwarder list (server 1).



hth
DDS W 2k MVP MCSE

"JoesCat" <JoesCat@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:0DADC46A-85D7-4746-9E9A-A756AD9F6826@xxxxxxxxxxxxxxxx
> W2003 Ad, DNS integrated running each of the two DC's.
> Each is set up as a forwarder to our ISP's DNS servers for internet name
> resolution.
> Clients are configured to use one of these DC's as their 1st DNS server,
> the
> other DC as secondary. A record lookups to the internet are successfu.
>
> Should each DC be configured with a forwarder entry to the other as the
> first entry? My thinking is both then would update their cache with all
> lookups for subsequent lookups. I wouldn't mind the extra hop, especially
> since it's LAN traffic.
>
> Or, is this a bad design?
>
> --
> -Joe


.

Relevant Pages

  • Re: Domain Replica
    ... reason for long boot time when none DNS server is available. ... DNS Client side Resolver service Query Process ... DNS Forwarder Resolution and Time Out Process: ...
    (microsoft.public.windows.server.general)
  • Re: Domain Replica
    ... I demoted that server properly before taking it offline for good. ... Here is a little info on how the DNS resolver works with regards to the ... DNS Client side Resolver service Query Process ... DNS Forwarder Resolution and Time Out Process: ...
    (microsoft.public.windows.server.general)
  • Re: Internet problems and DNS configuration
    ... To get it free, just delete the .zone in the DNS management console, close the DNS console open it again and you can configure the forwarder. ... The root servers in this case are the internet root server, so you can delete the ..zone it without any problem. ... The clients will query your internal DNS server, ...
    (microsoft.public.win2000.dns)
  • Re: disabled-do not use recursion for this domain-still root hint
    ... My Active directory server ... You cannot stop this traffic unless you force the Forwarder to do all ... In other words, if the Forwarder fails, DNS resolution fails. ... You also have to remember, all DNS resolution starts from the Root, the only ...
    (microsoft.public.windows.server.dns)
  • Re: DNS Forwarding issue
    ... Server is configured with forwarders to point to external DNS ... Generally this is a good idea (do not use recursion) ... Using the correct forwarder IP ...
    (microsoft.public.windows.server.dns)