Re: Remote sites and DNS

Hi
Inline
Hi there, I started working for this company that has several remote
sites, all connected via vpn. Each site has its own server that
performs dhcp for that local network and dns also. The Ip ranges are
192.168.1.x
192.168.2.x
192.168.3.x etc

Ok, make sire that you have sites and related subnets properly configured



The way it is done here there is one zone "domain.local" that contains
IP and NS for all the different sites, it seems to work ok on the most
part.

What do you mean with most part?



However most of the sites have a primary dns server rather than having
a single primary at head office and secondary dns at the remote sites.

I'm assuming that the Zone is AD Integrated and you only have one domain
correct?

Or are you running NON ADintegrated?

Make sure that the clients only use their local DNS server on that site in
their TCP/IP preferred DNS settings.



we have had a few issues with IP conflicts and I wondered if setting
all the remote sites to use a secondary dns server that poitns to the
head office one would be the way to go ?

Yep. But sites configuration is very important to this work.

*Sites have two main roles:

- To facilitate authentication, by determining the nearest domain controller
when a user logs on from a workstation

- To facilitate the replication of data between sites Because site names are
used in the records registered in the Domain Name System (DNS) by the domain
locator, they must be valid DNS names.

*Active Directory uses sites to:

-Optimize replication for speed and bandwidth consumption between domain
controllers.

-Locate the closest domain controller for client logon, services, and
directory searches.

-Direct a Distributed File System (DFS) client to the server that is hosting
the requested data within the site.

-Replicate the system volume (SYSVOL), a collection of folders in the file
system that exists on each domain controller in a domain and is required for
implementation of Group Policy.

More info:

Active Directory Sites and Services

http://www.microsoft.com/technet/security/prodtech/windows2000/w2kccadm/adsites/w2kadm39.mspx

Step-by-Step Guide to Active Directory Sites and Services

http://www.microsoft.com/technet/prodtechnol/windowsserver2003/technologies/directory/activedirectory/stepbystep/adsrv.mspx

Sites overview

http://technet2.microsoft.com/WindowsServer/en/library/a3970162-368d-4d99-b4f0-76503cc927af1033.mspx?mfr=true






--
I hope that the information above helps you


Good Luck
Jorge Silva
MCSA
Systems Administrator

<deadlychicken@xxxxxxxxxxx> wrote in message
news:1156298603.152399.80340@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Hi there, I started working for this company that has several remote
sites, all connected via vpn. Each site has its own server that
performs dhcp for that local network and dns also. The Ip ranges are

192.168.1.x
192.168.2.x
192.168.3.x etc

Now previously I have alsways done DNS based on a single internal IP
range e.g. 192.168.1.x and the zones were named in this fashoin.

The way it is done here there is one zone "domain.local" that contains
IP and NS for all the different sites, it seems to work ok on the most
part.

However most of the sites have a primary dns server rather than having
a single primary at head office and secondary dns at the remote sites.

we have had a few issues with IP conflicts and I wondered if setting
all the remote sites to use a secondary dns server that poitns to the
head office one would be the way to go ?

or should we also use subzones for each different ip range ?
or shoudl there be a different zone for each IP range(site) ?

thanks for any info..
DC



.

Relevant Pages

  • Issues migrating SBS 2003 domain to Server 2008 Standard
    ... We are stuck migrating our SBS 2003 domain to Server 2008. ... Fatal Error:DsGetDcName (SRV-EXCH) call failed, ... Verify your Domain Name Sysytem (DNS) is ... network connectivity to a domain controller. ...
    (microsoft.public.windows.server.sbs)
  • Re: AD management snap in cannot find DC (netdiag /v workstation)
    ... The name.local entries are used by my apache server to implement ... change button, more button, the "Primary DNS suffix of this ... Attr: subschemaSubentry ... Owner of the binding path: ...
    (microsoft.public.windows.server.active_directory)
  • Re: AD management snap in cannot find DC (netdiag /v workstation)
    ... button, more button, the "Primary DNS suffix of this computer", it should ... The Security System could not establish a secured connection with the server ... Attr: subschemaSubentry ... Owner of the binding path: ...
    (microsoft.public.windows.server.active_directory)
  • Re: AD management snap in cannot find DC (netdiag /v workstation)
    ... DNS Host Name: tonyb-pc.imageproc.imageproc.com ... Testing IpConfig - pinging the DHCP Server... ... Attr: subschemaSubentry ... Owner of the binding path: ...
    (microsoft.public.windows.server.active_directory)
  • Re: Issues migrating SBS 2003 domain to Server 2008 Standard
    ... Since you have migrated to standard server 2008 you would be better served posting in a Standard server NG. ... Event String: ... Verify your Domain Name Sysytem (DNS) is ... network connectivity to a domain controller. ...
    (microsoft.public.windows.server.sbs)