Re: Recursion Issues

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

From: "simon via WinServerKB.com" <u11670@uwe>
Date: Wed, 03 May 2006 21:02:50 GMT

Hi Bad

Just to clarify, you have forwarders configured and have selected the check
box "do not use recursion for this domain" on the forwarders tab.

The desired result being any clients that query for external resources only
use the DNS servers listed on the forwarders tab, otherwise the query fails...
...yes?

If so would it not be possible just to remove all the root servers listed on
the root hints tab (this can be replaced at a later time if necessay using
the cache.dns) it seems strange,like you say that queries are going to root
servers when recursion is disabled.

THINKING OUT LOUD, MAYBE INCORRECT - please advise if I am wrong

I assume the DNS servers in the DMZ to which you are forwarding support
recursion otherwise they may respond to the client DNS server with a referral
rather than a complete answer to the query. If this iterative answer is a
referral to the TLD servers this may explain why you would see a query from
your internal DNS server to a root (or TLD) server

Regards

Simon

Bad Beagle wrote:

Vincent, thank you but I am not sure how using conditional forwarding is
going to help. If the tab "do not use recursion for this domain" doesn't
work now, why would it work for specific domains? Basically, I never want
these servers to go out, only go to the forwarders.

Hi Bad,

[quoted text clipped - 48 lines]

servers on the internet. Any thoughts on what I have done wrong? Thanks
for any help.

--
Message posted via WinServerKB.com
http://www.winserverkb.com/Uwe/Forums.aspx/windows-server-dns/200605/1
.

Follow-Ups:
- Re: Recursion Issues
  - From: Bad Beagle

References:
- Recursion Issues
  - From: Bad Beagle
- RE: Recursion Issues
  - From: Vincent Xu [MSFT]
- Re: Recursion Issues
  - From: Bad Beagle

Prev by Date: Re: Having problems resolving using nslookup
Next by Date: Re: Having problems resolving using nslookup
Previous by thread: Re: Recursion Issues
Next by thread: Re: Recursion Issues
Index(es):
- Date
- Thread

Relevant Pages

Re: Root Hints or forwarders?
... > You say to use forwarders but on which servers the internal or DMZ? ... Just be sure to AVOID the "disable recursion" check box in the ... >> cannot reach the Internet even if you forgot to stop such. ...
(microsoft.public.win2000.dns)
Re: DNS recursion question while studying for 70-293
... it will query the servers listed as ... forwarders and then return a negative if it can't resolve the query with ... My question is about the servers that are queried as forwarders (DNS B & ... those servers do not have recursion disabled, ...
(microsoft.public.cert.exam.mcse)
RE: Recursion Issues
... select the box "Do not use recursion for this domain" you should leave the ... I have 2 internal ad dns servers that I have forwarders setup on and the ... servers on the internet. ...
(microsoft.public.windows.server.dns)
Re: Windows 2008 DNS forwarders and root hints
... However if you disable recursion under the Forwarders tab, it will not use the Roots and only use the Forwarders. ... If you do not have a forwarder configured then the "Use root hints if no forwarders are available" option on the Forwarder tab is greyed out. ...
(microsoft.public.windows.server.dns)
Re: Primary & Secondary DNS Server Problem
... > Two DNS servers configured. ... Make sure it REALLY has the same forwarders. ... you didn't disable Recursion. ...
(microsoft.public.windows.server.dns)