simple DNS question

Andrew

Distinguished
Mar 31, 2004
2,439
0
19,780
Archived from groups: microsoft.public.win2000.active_directory (More info?)

I have a domain with Win2k and Win2003 domain controllers.

I would like the Forward Lookup Zones to replicate between the DNS
servers in the domain. My Forward Lookup Zones are all
Active-Directory Integrated. I would have thought they would replicate
automatically.

Is there an easy way of doing this, because I've checked the Microsoft
website, and it all seems very complicated.

Any info would be great.
Thanks.

Andrew.
 
G

Guest

Guest
Archived from groups: microsoft.public.win2000.active_directory (More info?)

Andrew,

The DNS information' is part of the Domain Naming Context and, as such,
will not replicate to all Domains. It will only replicate to Domain
Controllers in 'that' domain. So, if you have three domains ( domainA,
domainB and domainC ) then the 'information' in domainA will only replicate
to Domain Controllers in domainA and the 'information' in domainB will only
replicate to Domain Controllers in domainB and the 'information' in domainC
will only replication between Domain Controllers in domainC.

You might have to think about secondary DNS zones.

Now, I will say that I have not played with WIN2003 much ( it is getting to
be about time that I did! ) and, IIRC, there are more options in WIN2003.
Maybe someone with more experience in WIN2003 can chime in.

You might also want to let us know some more information about your
environment. Is it a single domain Forest or do you have multiple domains
in the Forest?

--
Cary W. Shultz
Roanoke, VA 24012
Microsoft Active Directory MVP

http://www.activedirectory-win2000.com
http://www.grouppolicy-win2000.com



"Andrew" <bart3rNOSPAM@clinicdesignNOSPAM.com.au> wrote in message
news:bb8l91hjve3grdqp3ktots6hu3848lcd3v@4ax.com...
>I have a domain with Win2k and Win2003 domain controllers.
>
> I would like the Forward Lookup Zones to replicate between the DNS
> servers in the domain. My Forward Lookup Zones are all
> Active-Directory Integrated. I would have thought they would replicate
> automatically.
>
> Is there an easy way of doing this, because I've checked the Microsoft
> website, and it all seems very complicated.
>
> Any info would be great.
> Thanks.
>
> Andrew.
>
 
G

Guest

Guest
Archived from groups: microsoft.public.win2000.active_directory (More info?)

"Andrew" <bart3rNOSPAM@clinicdesignNOSPAM.com.au> wrote in message
news:bb8l91hjve3grdqp3ktots6hu3848lcd3v@4ax.com...
> I have a domain with Win2k and Win2003 domain controllers.
>
> I would like the Forward Lookup Zones to replicate between the DNS
> servers in the domain. My Forward Lookup Zones are all
> Active-Directory Integrated. I would have thought they would replicate
> automatically.

They will IF AD replicates.

NOTICE though that although it is legal to replicate additional
'zones' the zone that supports AD is usually the one you need to
focus upon -- and every zone is integrated or not into AD separately.

> Is there an easy way of doing this, because I've checked the Microsoft
> website, and it all seems very complicated.

No, it is very simple with one serious "gotcha" -- you must have
a consistent and complete DNS BEFORE you try to integrate the
"2nd" (or subsequent) DNS server.

AD is dependent on DNS -- if you have an inconsistent set of
DNS servers for the zone supporting the domain and integrate
it into AD you make them each dependent on the other before
AD can replicate correctly.

You may need to point the "2nd" DC/DNS server to just one
of their number UNTIL you can get AD fully replicated.


DNS for AD
1) Dynamic for the zone supporting AD
2) All internal DNS clients NIC\IP properties must specify SOLELY
that internal, dynamic DNS server (set.)
3) DCs and even DNS servers are DNS clients too -- see #2
4) If you have more than one Domain, every DNS server must
be able to resolve ALL domains (either directly or indirectly)

netdiag /fix

....or maybe:

dcdiag /fix

(Win2003 can do this from Support tools):
nltest /dsregdns /server:DC-ServerNameGoesHere
http://support.microsoft.com/kb/q260371/

Ensure that DNS zones/domains are fully replicated to all DNS
servers for that (internal) zone/domain.

Also useful may be running DCDiag on each DC, sending the
output to a text file, and searching for FAIL, ERROR, WARN.

Single Label domain zone names are a problem Google:
[ "SINGLE LABEL" domain names DNS 2000 | 2003 microsoft: ]

--
Herb Martin, MCSE, MVP
Accelerated MCSE
http://www.LearnQuick.Com
[phone number on web site]
 
G

Guest

Guest
Archived from groups: microsoft.public.win2000.active_directory (More info?)

> Now, I will say that I have not played with WIN2003 much ( it is getting
to
> be about time that I did! ) and, IIRC, there are more options in WIN2003.
> Maybe someone with more experience in WIN2003 can chime in.
>

It's not that different except for additional features to handle
multiple zones (conditional forwarding, stub zones) and to
control AD integration-replication in a multi-domain forest
(domain wide, dns-dc domain wide, dns-dc forest wide, and
a specific named application partition for any subset of forest
wide replication.)

These features are practically all incremental and nothing will
screw up Win2000 by default.

(E.g., you could use an application partition for replication which
will not work to the Win2000 DCs, but then that is obvious since
you cannot setup the application partition on those DCs.)

--
Herb Martin, MCSE, MVP
Accelerated MCSE
http://www.LearnQuick.Com
[phone number on web site]


"Cary Shultz [A.D. MVP]" <cwshultz@mvps.org> wrote in message
news:uu66lHQZFHA.3364@TK2MSFTNGP09.phx.gbl...
> Andrew,
>
> The DNS information' is part of the Domain Naming Context and, as such,
> will not replicate to all Domains. It will only replicate to Domain
> Controllers in 'that' domain. So, if you have three domains ( domainA,
> domainB and domainC ) then the 'information' in domainA will only
replicate
> to Domain Controllers in domainA and the 'information' in domainB will
only
> replicate to Domain Controllers in domainB and the 'information' in
domainC
> will only replication between Domain Controllers in domainC.
>
> You might have to think about secondary DNS zones.
>
> Now, I will say that I have not played with WIN2003 much ( it is getting
to
> be about time that I did! ) and, IIRC, there are more options in WIN2003.
> Maybe someone with more experience in WIN2003 can chime in.
>
> You might also want to let us know some more information about your
> environment. Is it a single domain Forest or do you have multiple domains

> in the Forest?
>
> --
> Cary W. Shultz
> Roanoke, VA 24012
> Microsoft Active Directory MVP
>
> http://www.activedirectory-win2000.com
> http://www.grouppolicy-win2000.com
>
>
>
> "Andrew" <bart3rNOSPAM@clinicdesignNOSPAM.com.au> wrote in message
> news:bb8l91hjve3grdqp3ktots6hu3848lcd3v@4ax.com...
> >I have a domain with Win2k and Win2003 domain controllers.
> >
> > I would like the Forward Lookup Zones to replicate between the DNS
> > servers in the domain. My Forward Lookup Zones are all
> > Active-Directory Integrated. I would have thought they would replicate
> > automatically.
> >
> > Is there an easy way of doing this, because I've checked the Microsoft
> > website, and it all seems very complicated.
> >
> > Any info would be great.
> > Thanks.
> >
> > Andrew.
> >
>
>
 
G

Guest

Guest
Archived from groups: microsoft.public.win2000.active_directory (More info?)

I remember from dcpromoing one WIN2003 Domain Controller ( to undo... ) and
then dcpromoing it back to a DC that there were three or four different
possibilities but could not remember them all. I really need to get going
with WIN2003!

--
Cary W. Shultz
Roanoke, VA 24012
Microsoft Active Directory MVP

http://www.activedirectory-win2000.com
http://www.grouppolicy-win2000.com



"Herb Martin" <news@LearnQuick.com> wrote in message
news:%231INQ$TZFHA.3132@TK2MSFTNGP09.phx.gbl...
>> Now, I will say that I have not played with WIN2003 much ( it is getting
> to
>> be about time that I did! ) and, IIRC, there are more options in WIN2003.
>> Maybe someone with more experience in WIN2003 can chime in.
>>
>
> It's not that different except for additional features to handle
> multiple zones (conditional forwarding, stub zones) and to
> control AD integration-replication in a multi-domain forest
> (domain wide, dns-dc domain wide, dns-dc forest wide, and
> a specific named application partition for any subset of forest
> wide replication.)
>
> These features are practically all incremental and nothing will
> screw up Win2000 by default.
>
> (E.g., you could use an application partition for replication which
> will not work to the Win2000 DCs, but then that is obvious since
> you cannot setup the application partition on those DCs.)
>
> --
> Herb Martin, MCSE, MVP
> Accelerated MCSE
> http://www.LearnQuick.Com
> [phone number on web site]
>
>
> "Cary Shultz [A.D. MVP]" <cwshultz@mvps.org> wrote in message
> news:uu66lHQZFHA.3364@TK2MSFTNGP09.phx.gbl...
>> Andrew,
>>
>> The DNS information' is part of the Domain Naming Context and, as such,
>> will not replicate to all Domains. It will only replicate to Domain
>> Controllers in 'that' domain. So, if you have three domains ( domainA,
>> domainB and domainC ) then the 'information' in domainA will only
> replicate
>> to Domain Controllers in domainA and the 'information' in domainB will
> only
>> replicate to Domain Controllers in domainB and the 'information' in
> domainC
>> will only replication between Domain Controllers in domainC.
>>
>> You might have to think about secondary DNS zones.
>>
>> Now, I will say that I have not played with WIN2003 much ( it is getting
> to
>> be about time that I did! ) and, IIRC, there are more options in WIN2003.
>> Maybe someone with more experience in WIN2003 can chime in.
>>
>> You might also want to let us know some more information about your
>> environment. Is it a single domain Forest or do you have multiple
>> domains
>
>> in the Forest?
>>
>> --
>> Cary W. Shultz
>> Roanoke, VA 24012
>> Microsoft Active Directory MVP
>>
>> http://www.activedirectory-win2000.com
>> http://www.grouppolicy-win2000.com
>>
>>
>>
>> "Andrew" <bart3rNOSPAM@clinicdesignNOSPAM.com.au> wrote in message
>> news:bb8l91hjve3grdqp3ktots6hu3848lcd3v@4ax.com...
>> >I have a domain with Win2k and Win2003 domain controllers.
>> >
>> > I would like the Forward Lookup Zones to replicate between the DNS
>> > servers in the domain. My Forward Lookup Zones are all
>> > Active-Directory Integrated. I would have thought they would replicate
>> > automatically.
>> >
>> > Is there an easy way of doing this, because I've checked the Microsoft
>> > website, and it all seems very complicated.
>> >
>> > Any info would be great.
>> > Thanks.
>> >
>> > Andrew.
>> >
>>
>>
>
>
 
G

Guest

Guest
Archived from groups: microsoft.public.win2000.active_directory (More info?)

"Cary Shultz [A.D. MVP]" <cwshultz@mvps.org> wrote in message
news:#BwsCiXZFHA.2496@TK2MSFTNGP14.phx.gbl...
> I remember from dcpromoing one WIN2003 Domain Controller ( to undo... )
and
> then dcpromoing it back to a DC that there were three or four different
> possibilities but could not remember them all. I really need to get going
> with WIN2003!

You get to use the same choices in the DNS MMC when
it runs on a DC too.

Microsoft should have just called this stuff NT 5.0, 5.1, 5.2
-- then most people would upgrade without really thinking
about it too hard. <grin>


--
Herb Martin, MCSE, MVP
Accelerated MCSE
http://www.LearnQuick.Com
[phone number on web site]

>
> --
> Cary W. Shultz
> Roanoke, VA 24012
> Microsoft Active Directory MVP
>
> http://www.activedirectory-win2000.com
> http://www.grouppolicy-win2000.com
>
>
>
> "Herb Martin" <news@LearnQuick.com> wrote in message
> news:%231INQ$TZFHA.3132@TK2MSFTNGP09.phx.gbl...
> >> Now, I will say that I have not played with WIN2003 much ( it is
getting
> > to
> >> be about time that I did! ) and, IIRC, there are more options in
WIN2003.
> >> Maybe someone with more experience in WIN2003 can chime in.
> >>
> >
> > It's not that different except for additional features to handle
> > multiple zones (conditional forwarding, stub zones) and to
> > control AD integration-replication in a multi-domain forest
> > (domain wide, dns-dc domain wide, dns-dc forest wide, and
> > a specific named application partition for any subset of forest
> > wide replication.)
> >
> > These features are practically all incremental and nothing will
> > screw up Win2000 by default.
> >
> > (E.g., you could use an application partition for replication which
> > will not work to the Win2000 DCs, but then that is obvious since
> > you cannot setup the application partition on those DCs.)
> >
> > --
> > Herb Martin, MCSE, MVP
> > Accelerated MCSE
> > http://www.LearnQuick.Com
> > [phone number on web site]
> >
> >
> > "Cary Shultz [A.D. MVP]" <cwshultz@mvps.org> wrote in message
> > news:uu66lHQZFHA.3364@TK2MSFTNGP09.phx.gbl...
> >> Andrew,
> >>
> >> The DNS information' is part of the Domain Naming Context and, as
such,
> >> will not replicate to all Domains. It will only replicate to Domain
> >> Controllers in 'that' domain. So, if you have three domains ( domainA,
> >> domainB and domainC ) then the 'information' in domainA will only
> > replicate
> >> to Domain Controllers in domainA and the 'information' in domainB will
> > only
> >> replicate to Domain Controllers in domainB and the 'information' in
> > domainC
> >> will only replication between Domain Controllers in domainC.
> >>
> >> You might have to think about secondary DNS zones.
> >>
> >> Now, I will say that I have not played with WIN2003 much ( it is
getting
> > to
> >> be about time that I did! ) and, IIRC, there are more options in
WIN2003.
> >> Maybe someone with more experience in WIN2003 can chime in.
> >>
> >> You might also want to let us know some more information about your
> >> environment. Is it a single domain Forest or do you have multiple
> >> domains
> >
> >> in the Forest?
> >>
> >> --
> >> Cary W. Shultz
> >> Roanoke, VA 24012
> >> Microsoft Active Directory MVP
> >>
> >> http://www.activedirectory-win2000.com
> >> http://www.grouppolicy-win2000.com
> >>
> >>
> >>
> >> "Andrew" <bart3rNOSPAM@clinicdesignNOSPAM.com.au> wrote in message
> >> news:bb8l91hjve3grdqp3ktots6hu3848lcd3v@4ax.com...
> >> >I have a domain with Win2k and Win2003 domain controllers.
> >> >
> >> > I would like the Forward Lookup Zones to replicate between the DNS
> >> > servers in the domain. My Forward Lookup Zones are all
> >> > Active-Directory Integrated. I would have thought they would
replicate
> >> > automatically.
> >> >
> >> > Is there an easy way of doing this, because I've checked the
Microsoft
> >> > website, and it all seems very complicated.
> >> >
> >> > Any info would be great.
> >> > Thanks.
> >> >
> >> > Andrew.
> >> >
> >>
> >>
> >
> >
>
>