Re: AD & Bind Configuration

Tech-Archive recommends: Fix windows errors by optimizing your registry

In news:4ED675B2-8EBA-42E7-A488-67FCBFDF688B@xxxxxxxxxxxxx,
Bob Smith <BobSmith@xxxxxxxxxxxxxxxxxxxxxxxxx> posted this:
> Kevin,
>
> Thanks for the reply, Don't I wish AD could be the primary,
> previously AD
> was configure as it's own DNS but only the DC's were pointing to
> themselves
> and everything else pointed to bind, but I would see errors for apps
> and the
> DC's and basically it could not find the servers or the DC's, I
> implemented
> WSUS and MOM well nothing but errors due to DNS, so I changed my AD to
> secondaries so bind would talk to them, and now I getting GC errors.
> The Bind
> folks are reluctant on adding any AD record types, I was reviewing
> some docs
> which stated in our type enviorment to make every DC A DNS server, I
> reviewed
> the netlogon.dns file and there quite a few entries that would needed
> to be
> added to Bind, which I know I catch flak over. I am not sure what Glue
> Records are, I reviewed the Named.conf and the only ad info in it is
> the
> Allow Transfer which is the two AD dns servers, were would this info
> go in
> Bind.

You must add the records from the netlogon.dns, it has the GC records.



--?
Best regards,
Kevin D4 Dad Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
===================================


.

Relevant Pages

  • [NEWS] BIND 9 DNS Cache Poisoning
    ... BIND 9 DNS Cache Poisoning ... source UDP port and DNS transaction ID can be effectively predicted. ... address of the target name server), and the destination UDP port (53 the ...
    (Securiteam)
  • [UNIX] Multiple Remote Vulnerabilities in BIND4 and BIND8
    ... ISS X-Force has discovered several serious vulnerabilities in the Berkeley ... Internet Name Domain Server (BIND). ... majority of DNS servers on the Internet. ... deployed recursive DNS servers on the Internet. ...
    (Securiteam)
  • Re: DNS Manipulation via IPTables or other means?
    ... You might use the BIND view functionality ... I thought I could alter DNS responses ... EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE ... The NSA has designated Norwich University a center of Academic ...
    (Security-Basics)
  • Re: AD & Bind Configuration
    ... WSUS and MOM well nothing but errors due to DNS, so I changed my AD to ... secondaries so bind would talk to them, and now I getting GC errors. ... folks are reluctant on adding any AD record types, I was reviewing some docs ... >> 2 of them are DNS servers that get the records from Bind, ...
    (microsoft.public.windows.server.dns)
  • Re: DNS Manipulation via IPTables or other means?
    ... Not sure about iptables. ... I nwhat way is BIND not scalable -- ... I thought I could alter DNS responses ... EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE ...
    (Security-Basics)