Sign in with
Sign up | Sign in
Your question

DNS Zone Transfer

Last response: in Windows 2000/NT
Share
May 12, 2005 11:21:13 PM

Archived from groups: microsoft.public.win2000.dns (More info?)

When I create a child domain that is connected to the parent domain using a
WAN link, what kind o DNS zone do I have to install on this child domain to
enable its client to resolve name of both, child and parent domain and not
cause too much network trafic (both DNS servers are not domain controllers so
I cnnot use AD integrated primary zones) ?

More about : dns zone transfer

Anonymous
May 13, 2005 4:07:48 AM

Archived from groups: microsoft.public.win2000.dns (More info?)

"Ricardo" <Ricardo@discussions.microsoft.com> wrote in message
news:8BEA5D8A-505A-427F-8460-37B86C1C86EF@microsoft.com...
> When I create a child domain that is connected to the parent domain using
a
> WAN link, what kind o DNS zone do I have to install on this child domain

All zones must START with a Primary DNS (or AD-Integrated
which is logically equivalent to the Primary). So the child domain
must have it's own Primary and optional secondary servers.

> to
> enable its client to resolve name of both,

This needs a zone for both the parent domain and another
zone for the child domain.

In Win2000 it is common for the child DNS servers to ALSO
contain a secondary zone for the parent Domain DNS zone.

> child and parent domain and not
> cause too much network trafic (both DNS servers are not domain controllers
so
> I cnnot use AD integrated primary zones) ?

You cannot use AD-integration across domains in Win2000
anyway (that requires Win2003 DNS on DCs.)

--
Herb Martin, MCSE, MVP
Accelerated MCSE
http://www.LearnQuick.Com
[phone number on web site]
May 13, 2005 9:34:02 AM

Archived from groups: microsoft.public.win2000.dns (More info?)

OK Herb, just to me understand your answer ...

So I have to create in the child domais DNS server a secoundary zone for the
entire primary zone of the parent domain, or just a secoundry zone for the
child domain zone ?

"Herb Martin" wrote:

> "Ricardo" <Ricardo@discussions.microsoft.com> wrote in message
> news:8BEA5D8A-505A-427F-8460-37B86C1C86EF@microsoft.com...
> > When I create a child domain that is connected to the parent domain using
> a
> > WAN link, what kind o DNS zone do I have to install on this child domain
>
> All zones must START with a Primary DNS (or AD-Integrated
> which is logically equivalent to the Primary). So the child domain
> must have it's own Primary and optional secondary servers.
>
> > to
> > enable its client to resolve name of both,
>
> This needs a zone for both the parent domain and another
> zone for the child domain.
>
> In Win2000 it is common for the child DNS servers to ALSO
> contain a secondary zone for the parent Domain DNS zone.
>
> > child and parent domain and not
> > cause too much network trafic (both DNS servers are not domain controllers
> so
> > I cnnot use AD integrated primary zones) ?
>
> You cannot use AD-integration across domains in Win2000
> anyway (that requires Win2003 DNS on DCs.)
>
> --
> Herb Martin, MCSE, MVP
> Accelerated MCSE
> http://www.LearnQuick.Com
> [phone number on web site]
>
>
>
Anonymous
May 13, 2005 12:31:47 PM

Archived from groups: microsoft.public.win2000.dns (More info?)

"Ricardo" <Ricardo@discussions.microsoft.com> wrote in message
news:EBA7DE59-35A5-4AD5-9EDD-D1E44506B55E@microsoft.com...
> OK Herb, just to me understand your answer ...
>
> So I have to create in the child domais DNS server a secoundary zone for
the
> entire primary zone of the parent domain,

That is most likely your best course of action.

It is possible to avoid doing this in some cases but this
method is usually simplest with Win2000. (Win2003
has more choices.)

> or just a secoundry zone for the
> child domain zone ?

You will need a Primary for the child zone, and the
Secondaries to that Primary for performance and fault
tolerance.

Key concept: Always think about each zone SEPARATELY.
Each zone needs it's own Primary and other DNS servers.

Once you have EACH zone SEPARATELY designed, you may
choose to put multiple zones on the same physically server(s).

Remember that clients of the server holding the "child zone"
will need to resolve: the child zone, the parent zone(s), and
also (likely) The Internet.

Since forwarding will handle the Internet, this eliminates
forwarding from use for finding the parent and other internal
zones (usually).

Also remember that the parent will need to DELEGATE the
child zone to the authoritative servers so that clients of the
parent server set will be able to go to the parent and recurse
down to the child (otherwise the parent would need to also
hold secondaries for the child.)

DNS is very simple, but it is very unforgiving of broken
links in the resolution path.


--
Herb Martin, MCSE, MVP
Accelerated MCSE
http://www.LearnQuick.Com
[phone number on web site]

>
> "Herb Martin" wrote:
>
> > "Ricardo" <Ricardo@discussions.microsoft.com> wrote in message
> > news:8BEA5D8A-505A-427F-8460-37B86C1C86EF@microsoft.com...
> > > When I create a child domain that is connected to the parent domain
using
> > a
> > > WAN link, what kind o DNS zone do I have to install on this child
domain
> >
> > All zones must START with a Primary DNS (or AD-Integrated
> > which is logically equivalent to the Primary). So the child domain
> > must have it's own Primary and optional secondary servers.
> >
> > > to
> > > enable its client to resolve name of both,
> >
> > This needs a zone for both the parent domain and another
> > zone for the child domain.
> >
> > In Win2000 it is common for the child DNS servers to ALSO
> > contain a secondary zone for the parent Domain DNS zone.
> >
> > > child and parent domain and not
> > > cause too much network trafic (both DNS servers are not domain
controllers
> > so
> > > I cnnot use AD integrated primary zones) ?
> >
> > You cannot use AD-integration across domains in Win2000
> > anyway (that requires Win2003 DNS on DCs.)
> >
> > --
> > Herb Martin, MCSE, MVP
> > Accelerated MCSE
> > http://www.LearnQuick.Com
> > [phone number on web site]
> >
> >
> >
!