Sign in with
Sign up | Sign in

Add Windows Server 2012 DNS Server to Allow DNS Zone Transfers

This Tutorial addresses:
  • Windows Server
  • DNS Server
  • DNS
  • Servers
Many DNS administrators configure the DNS servers in a way that the zone transfers can take place only between the specified DNS servers. By configuring the DNS servers this way, the administrators can reduce the security risks that may otherwise remain high when the DNS servers are configured to forward the DNS updates to all the DNS servers that request them.

By allowing only limited and specific DNS servers to receive the DNS updates from the primary DNS servers, the administrators can ensure that the zone transfers are taking place between the valid and authorized servers only.

Here is how you can add a Windows Server 2012 DNS server in the Name Servers list in order to allow it to receive the DNS updates via DNS zone transfers:

  1. Log on to the Windows Server 2012 DNS server using the Enterprise Admin or Domain Admin account credentials.

  2. If not already started, initialize the Server Manager window from the bottom left corner of the screen.

  3. Once the Server Manager window is initialized, from the left pane, click to select the DNS category.

  4. From the right pane, under the SERVERS section, right-click the DNS server.

  5. From the context menu that appears, click DNS Manager.



  6. On the opened DNS Manager snap-in from the left pane, expand the server name (DC-01.MYDOMAIN.COM for this demonstration), and then expand Forward Lookup Zones.

  7. From the expanded list, click to select and then right-click the domain name. (MYDOMAIN.COM for this demonstration.).

  8. From the displayed context menu, click the Properties option.



  9. On the opened domain’s properties box, go to the Zone Transfers tab.

  10. On the displayed interface, make sure that the Allow zone transfers checkbox is checked.

  11. Also ensure that the Only to servers listed on the Name Servers tab radio button is selected.



  12. Once verified, go to the Name Servers tab.

  13. From the displayed interface, click the Add button.



  14. On the opened New Name Server Record box, type the FQDN for the target DNS server in the Server fully qualified domain name (FQDN) field.

  15. Click the Resolve button to resolve the IP address for the typed host name.

  16. Once the IP address is resolved, click the OK.



  17. Back on the domain’s properties box, click OK to save the changes and to close the box.



  18. Back on the DNS Manager snap-in, right-click the server name. (DC-01.MYDOMAIN.COM for this demonstration.).

  19. From the displayed context menu, go to All Tasks, and click Restart from the submenu that appears.



  20. Wait till the DNS service restarts before the DNS server starts working using the modified settings.

    Can't find your answer ? Ask !