Archived from groups: microsoft.public.win2000.dns (
More info?)
"Kevin D. Goodknecht [MVP]" <admin@nospam.WFTX.US> wrote in message
news:OpjSifPVEHA.1012@TK2MSFTNGP09.phx.gbl...
> In news:eSGH%23DIVEHA.3168@TK2MSFTNGP10.phx.gbl,
> Darrel <dl1972####hotmail.com> posted a question
> Then Kevin replied below:
> > Under the zone lan.publicname.com (active directory integrated with
> > secure updates only), the name of the computer (server1) keeps
> > changing its IP address to the public IP as a nameserver and host.
> > This last time that it did it, I just left it at the external address
> > to see if that makes a difference. I haven't noticed it yet, but I
> > haven't been on the internet all that much since then, so I'm still
> > checking that out.
>
> Is that still happening?
YES - right now, the nameserver/host server1.lan.publicname.com under the
lan.publicname.com is my external IP.
> Is DNS still only listening on the internal IP on the interfaces tab?
YES - listens only on internal
> DNS is supposed to use the IP on the listener tab for the IP of the Domain
> Controller, that is what is supposed to happen anyway. If DNS is listening
> on the internal IP and it is giving the DC host record the public IP
> something is amiss, there is a KB article on this I'll have to look it up
> and post it when I can find it.
>
> > I had one other question about the reverse zones. The reverse zone
> > for 192.168.1.x is AD integrated with secure updates only. And the
> > reverse zone for my public IP is Primary with NO updates. I know
> > that Kevin said for the forward public zones to NOT allow updates,
> > but he still had the reverse zone set up to YES updates. I changed
> > it to NO. Which is correct?
> > thanks again
>
> Your delegate reverse public zone should be set to no, in fact all you
> public zones should be no updates, the inernal private zones should be
Only
> secure updates, I apologize if I missed that.
No sweat - that is how it is currently setup. If you need to get back in
with TS, I'll enable it again.
>
> --
> Best regards,
> Kevin D4 Dad Goodknecht Sr. [MVP]
> Hope This Helps
> ============================
> --
> When responding to posts, please "Reply to Group" via your
> newsreader so that others may learn and benefit from your issue.
> To respond directly to me remove the nospam. from my email.
> ==========================================
> http://www.lonestaramerica.com/
> ==========================================
> Use Outlook Express?... Get OE_Quotefix:
> It will strip signature out and more
> http://home.in.tum.de/~jain/software/oe-quotefix/
> ==========================================
> Keep a back up of your OE settings and folders with
> OEBackup:
>
http://www.oehelp.com/OEBackup/Default.aspx
> ==========================================
>
>