DNS zone transfer problems on SBS 2003 Premium

From: John Palmer \(Acacia Computing\) (anonymous_at_discussions.microsoft.com)
Date: 06/02/04

Next message: Ted: "sharing contacts in Exchange"
Previous message: Curtis: "Re: SBS 2000 and Backup Exec 9.0"
Next in thread: Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP]: "Re: DNS zone transfer problems on SBS 2003 Premium"
Reply: Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP]: "Re: DNS zone transfer problems on SBS 2003 Premium"
Messages sorted by: [ date ] [ thread ]

Date: Wed, 2 Jun 2004 11:25:02 -0700

I'm attempting to setup a SBS 2003 network where the
companyname.com primary zone is hosted locally and will
be transferred to a secondary zone hosting service for
reliability. The ISA protocol rules and server
publishing rules are configured correctly and are
limiting zone transfers to a only the desired
secondary servers. When DNS is configured to only allow
zone transfers to listed name servers, I get a REFUSED
error and the remote address is 127.0.0.1 when a transfer
is attempted. (I enabled the debug logging on the DNS
server.) When allowing transfers to any server, it works
fine.

I'm using the ISA provided rules: DNS Query and Query
Server (UDP 53) and DNS Zone Transfer and Transfer Server
(TCP 53).

I found the REFUSED message in the DNS debug log. ISA
generated warnings about high port DNS zone transfers. No
other events are logged in any of the event logs.

I tried both named nameservers as well as by specifed IP
addresses. Neither work. Only if all servers are allowed.

** I believe the root of the problem is that the DNS
server is interpreting the remote server to be 127.0.0.1
not the assigned external DNS server address. 127.0.0.1
cannot be entered as one of the allowed transfer servers,
so only "all servers" is the only way it works currently.
**

Is something configured wrong or is this a bug???

Next message: Ted: "sharing contacts in Exchange"
Previous message: Curtis: "Re: SBS 2000 and Backup Exec 9.0"
Next in thread: Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP]: "Re: DNS zone transfer problems on SBS 2003 Premium"
Reply: Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP]: "Re: DNS zone transfer problems on SBS 2003 Premium"
Messages sorted by: [ date ] [ thread ]

Relevant Pages

RE: exchange server cannot mount mailbox store
... What's the exact detailed DNS Events ... Type desired internal IP address of your SBS server. ... it will delete the reverse lookup zone if the zone no longer ... Microsoft CSS Online Newsgroup Support ...
(microsoft.public.windows.server.sbs)
Re: Event 4515 :another copy of zone has been found
... running on the old 2000 server. ... I then installed DNS on ... I seem to remember hearing that if you just delete/remove the zone it ... Container), the Configuration Partition, and the Schema Partition. ...
(microsoft.public.windows.server.dns)
Re: Replication between parent child domains
... install dns before i run the dcpromo on the melbourne server. ... DNS server will forward any query it can't answer, Checks zone ...
(microsoft.public.windows.server.active_directory)
Re: Replication between parent child domains
... DNS server will forward any query it can't answer, Checks zone ... DNS Servers) all queries will go to tld DNS server (including Internet ... Stub zones: Stub zones contain a read-only copy with specific records ...
(microsoft.public.windows.server.active_directory)
Re: DNS Redesign Issue
... -Using DNS console you can right-click the zone and export to a File, ... -To export a Zone and import that Zone in another DNS Server you need to use ... Create a child zone dallas on the DNS server in the child domain ...
(microsoft.public.windows.server.dns)