(Msg. 1) Posted: Fri Aug 01, 2008 11:26 am
Post subject: Proper DNS configuration help Archived from groups: microsoft>public>win2000>dns (more info?)
I have been looking at the dns setup of a network I inherited and it looks
wrong to me. Before I change anything I want to verify I am on the right
track.
All of my clients are configured for
primary dns=192.168.1.17=victory1
secondary dns=192.168.1.16=victory2
Because of this setup I always considered that victory1 was the first DC
configured and victory2 came next but now I am not sure. If the AD roles are
important let me know and I will verify them.
The primary server is hardly ever down but I have noticed when it is dns
name resolution slows down because web pages take longer to load. This got
me investigating the configs and this is what I found.
victory1
forwarders=opendns servers=208.67.222.222/208.67.220.220
forward lookup zone=victory.org(AD integrated, primary, zone transfers not
allowed)
victory2
forwarders=192.168.1.17
forward lookup zone=victory.org(AD integrated, primary, zone transfers
allowed to any server)
This would explain when victory1 is down dns takes longer because victory2
has to go to root hints for dns. I propose to change to this config.
victory1
forwarders=opendns servers=208.67.222.222/208.67.220.220
forward lookup zone=victory.org(AD integrated, primary, zone transfers
allowed to any server)
victory2
forwarders=opendns servers=208.67.222.222/208.67.220.220
forward lookup zone=victory.org(AD integrated, primary, zone transfers
allowed to any server)
If I am missing something or you need more info to sort this out just let me
know. Any help is appreciated.
(Msg. 2) Posted: Fri Aug 01, 2008 6:42 pm
Post subject: Re: Proper DNS configuration help [Login to view extended thread Info.] Archived from groups: per prev. post (more info?)
Hello Mike,
I would do exactly the same, remove the 192.x.x.x from the forwarders and
add the other ones.
Best regards
Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
> I have been looking at the dns setup of a network I inherited and it
> looks wrong to me. Before I change anything I want to verify I am on
> the right track.
>
> All of my clients are configured for
> primary dns=192.168.1.17=victory1
> secondary dns=192.168.1.16=victory2
> Because of this setup I always considered that victory1 was the first
> DC configured and victory2 came next but now I am not sure. If the AD
> roles are important let me know and I will verify them.
>
> The primary server is hardly ever down but I have noticed when it is
> dns name resolution slows down because web pages take longer to load.
> This got me investigating the configs and this is what I found.
>
> victory1
> forwarders=opendns servers=208.67.222.222/208.67.220.220
> forward lookup zone=victory.org(AD integrated, primary, zone transfers
> not
> allowed)
> victory2
> forwarders=192.168.1.17
> forward lookup zone=victory.org(AD integrated, primary, zone transfers
> allowed to any server)
> This would explain when victory1 is down dns takes longer because
> victory2 has to go to root hints for dns. I propose to change to this
> config.
>
> victory1
> forwarders=opendns servers=208.67.222.222/208.67.220.220
> forward lookup zone=victory.org(AD integrated, primary, zone transfers
> allowed to any server)
> victory2
> forwarders=opendns servers=208.67.222.222/208.67.220.220
> forward lookup zone=victory.org(AD integrated, primary, zone transfers
> allowed to any server)
> If I am missing something or you need more info to sort this out just
> let me know. Any help is appreciated.
>
(Msg. 3) Posted: Fri Aug 01, 2008 6:42 pm
Post subject: Re: Proper DNS configuration help [Login to view extended thread Info.] Archived from groups: per prev. post (more info?)
Thanks for the reply. Is the zone transfers setting even relevant in an AD
integrated zone? I think not.
"Meinolf Weber" <meiweb(nospam)@gmx.de> wrote in message
news:ff16fb66a54d68cac22e3451ac81@msnews.microsoft.com...
> Hello Mike,
>
> I would do exactly the same, remove the 192.x.x.x from the forwarders and
> add the other ones.
>
> Best regards
>
> Meinolf Weber
> Disclaimer: This posting is provided "AS IS" with no warranties, and
> confers no rights.
> ** Please do NOT email, only reply to Newsgroups
> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm >
>> I have been looking at the dns setup of a network I inherited and it
>> looks wrong to me. Before I change anything I want to verify I am on
>> the right track.
>>
>> All of my clients are configured for
>> primary dns=192.168.1.17=victory1
>> secondary dns=192.168.1.16=victory2
>> Because of this setup I always considered that victory1 was the first
>> DC configured and victory2 came next but now I am not sure. If the AD
>> roles are important let me know and I will verify them.
>>
>> The primary server is hardly ever down but I have noticed when it is
>> dns name resolution slows down because web pages take longer to load.
>> This got me investigating the configs and this is what I found.
>>
>> victory1
>> forwarders=opendns servers=208.67.222.222/208.67.220.220
>> forward lookup zone=victory.org(AD integrated, primary, zone transfers
>> not
>> allowed)
>> victory2
>> forwarders=192.168.1.17
>> forward lookup zone=victory.org(AD integrated, primary, zone transfers
>> allowed to any server)
>> This would explain when victory1 is down dns takes longer because
>> victory2 has to go to root hints for dns. I propose to change to this
>> config.
>>
>> victory1
>> forwarders=opendns servers=208.67.222.222/208.67.220.220
>> forward lookup zone=victory.org(AD integrated, primary, zone transfers
>> allowed to any server)
>> victory2
>> forwarders=opendns servers=208.67.222.222/208.67.220.220
>> forward lookup zone=victory.org(AD integrated, primary, zone transfers
>> allowed to any server)
>> If I am missing something or you need more info to sort this out just
>> let me know. Any help is appreciated.
>>
>
>
(Msg. 4) Posted: Fri Aug 01, 2008 7:14 pm
Post subject: Re: Proper DNS configuration help [Login to view extended thread Info.] Archived from groups: per prev. post (more info?)
Hello Mike,
No, all zones will be replicated with AD replication. But if you have other
DNS servers you can still use it.
Best regards
Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
> Thanks for the reply. Is the zone transfers setting even relevant in
> an AD integrated zone? I think not.
>
> "Meinolf Weber" <meiweb(nospam)@gmx.de> wrote in message
> news:ff16fb66a54d68cac22e3451ac81@msnews.microsoft.com...
>
>> Hello Mike,
>>
>> I would do exactly the same, remove the 192.x.x.x from the forwarders
>> and add the other ones.
>>
>> Best regards
>>
>> Meinolf Weber
>> Disclaimer: This posting is provided "AS IS" with no warranties, and
>> confers no rights.
>> ** Please do NOT email, only reply to Newsgroups
>> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm >>> I have been looking at the dns setup of a network I inherited and it
>>> looks wrong to me. Before I change anything I want to verify I am on
>>> the right track.
>>>
>>> All of my clients are configured for
>>> primary dns=192.168.1.17=victory1
>>> secondary dns=192.168.1.16=victory2
>>> Because of this setup I always considered that victory1 was the
>>> first
>>> DC configured and victory2 came next but now I am not sure. If the
>>> AD
>>> roles are important let me know and I will verify them.
>>> The primary server is hardly ever down but I have noticed when it is
>>> dns name resolution slows down because web pages take longer to
>>> load. This got me investigating the configs and this is what I
>>> found.
>>>
>>> victory1
>>> forwarders=opendns servers=208.67.222.222/208.67.220.220
>>> forward lookup zone=victory.org(AD integrated, primary, zone
>>> transfers
>>> not
>>> allowed)
>>> victory2
>>> forwarders=192.168.1.17
>>> forward lookup zone=victory.org(AD integrated, primary, zone
>>> transfers
>>> allowed to any server)
>>> This would explain when victory1 is down dns takes longer because
>>> victory2 has to go to root hints for dns. I propose to change to
>>> this
>>> config.
>>> victory1
>>> forwarders=opendns servers=208.67.222.222/208.67.220.220
>>> forward lookup zone=victory.org(AD integrated, primary, zone
>>> transfers
>>> allowed to any server)
>>> victory2
>>> forwarders=opendns servers=208.67.222.222/208.67.220.220
>>> forward lookup zone=victory.org(AD integrated, primary, zone
>>> transfers
>>> allowed to any server)
>>> If I am missing something or you need more info to sort this out
>>> just
>>> let me know. Any help is appreciated.
(Msg. 5) Posted: Fri Aug 01, 2008 7:14 pm
Post subject: Re: Proper DNS configuration help [Login to view extended thread Info.] Archived from groups: per prev. post (more info?)
Great - thanks for the help and have a great weekend.
"Meinolf Weber" <meiweb(nospam)@gmx.de> wrote in message
news:ff16fb66a54e08cac232a709d1e1@msnews.microsoft.com...
> Hello Mike,
>
> No, all zones will be replicated with AD replication. But if you have
> other DNS servers you can still use it.
>
> Best regards
>
> Meinolf Weber
> Disclaimer: This posting is provided "AS IS" with no warranties, and
> confers no rights.
> ** Please do NOT email, only reply to Newsgroups
> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm >
>> Thanks for the reply. Is the zone transfers setting even relevant in
>> an AD integrated zone? I think not.
>>
>> "Meinolf Weber" <meiweb(nospam)@gmx.de> wrote in message
>> news:ff16fb66a54d68cac22e3451ac81@msnews.microsoft.com...
>>
>>> Hello Mike,
>>>
>>> I would do exactly the same, remove the 192.x.x.x from the forwarders
>>> and add the other ones.
>>>
>>> Best regards
>>>
>>> Meinolf Weber
>>> Disclaimer: This posting is provided "AS IS" with no warranties, and
>>> confers no rights.
>>> ** Please do NOT email, only reply to Newsgroups
>>> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm >>>> I have been looking at the dns setup of a network I inherited and it
>>>> looks wrong to me. Before I change anything I want to verify I am on
>>>> the right track.
>>>>
>>>> All of my clients are configured for
>>>> primary dns=192.168.1.17=victory1
>>>> secondary dns=192.168.1.16=victory2
>>>> Because of this setup I always considered that victory1 was the
>>>> first
>>>> DC configured and victory2 came next but now I am not sure. If the
>>>> AD
>>>> roles are important let me know and I will verify them.
>>>> The primary server is hardly ever down but I have noticed when it is
>>>> dns name resolution slows down because web pages take longer to
>>>> load. This got me investigating the configs and this is what I
>>>> found.
>>>>
>>>> victory1
>>>> forwarders=opendns servers=208.67.222.222/208.67.220.220
>>>> forward lookup zone=victory.org(AD integrated, primary, zone
>>>> transfers
>>>> not
>>>> allowed)
>>>> victory2
>>>> forwarders=192.168.1.17
>>>> forward lookup zone=victory.org(AD integrated, primary, zone
>>>> transfers
>>>> allowed to any server)
>>>> This would explain when victory1 is down dns takes longer because
>>>> victory2 has to go to root hints for dns. I propose to change to
>>>> this
>>>> config.
>>>> victory1
>>>> forwarders=opendns servers=208.67.222.222/208.67.220.220
>>>> forward lookup zone=victory.org(AD integrated, primary, zone
>>>> transfers
>>>> allowed to any server)
>>>> victory2
>>>> forwarders=opendns servers=208.67.222.222/208.67.220.220
>>>> forward lookup zone=victory.org(AD integrated, primary, zone
>>>> transfers
>>>> allowed to any server)
>>>> If I am missing something or you need more info to sort this out
>>>> just
>>>> let me know. Any help is appreciated.
>
>
(Msg. 6) Posted: Fri Aug 01, 2008 7:31 pm
Post subject: Re: Proper DNS configuration help [Login to view extended thread Info.] Archived from groups: per prev. post (more info?)
Hello Mike,
Same to you
Best regards
Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
> Great - thanks for the help and have a great weekend.
>
> "Meinolf Weber" <meiweb(nospam)@gmx.de> wrote in message
> news:ff16fb66a54e08cac232a709d1e1@msnews.microsoft.com...
>
>> Hello Mike,
>>
>> No, all zones will be replicated with AD replication. But if you have
>> other DNS servers you can still use it.
>>
>> Best regards
>>
>> Meinolf Weber
>> Disclaimer: This posting is provided "AS IS" with no warranties, and
>> confers no rights.
>> ** Please do NOT email, only reply to Newsgroups
>> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm >>> Thanks for the reply. Is the zone transfers setting even relevant in
>>> an AD integrated zone? I think not.
>>>
>>> "Meinolf Weber" <meiweb(nospam)@gmx.de> wrote in message
>>> news:ff16fb66a54d68cac22e3451ac81@msnews.microsoft.com...
>>>
>>>> Hello Mike,
>>>>
>>>> I would do exactly the same, remove the 192.x.x.x from the
>>>> forwarders and add the other ones.
>>>>
>>>> Best regards
>>>>
>>>> Meinolf Weber
>>>> Disclaimer: This posting is provided "AS IS" with no warranties,
>>>> and
>>>> confers no rights.
>>>> ** Please do NOT email, only reply to Newsgroups
>>>> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm >>>>> I have been looking at the dns setup of a network I inherited and
>>>>> it looks wrong to me. Before I change anything I want to verify I
>>>>> am on the right track.
>>>>>
>>>>> All of my clients are configured for
>>>>> primary dns=192.168.1.17=victory1
>>>>> secondary dns=192.168.1.16=victory2
>>>>> Because of this setup I always considered that victory1 was the
>>>>> first
>>>>> DC configured and victory2 came next but now I am not sure. If the
>>>>> AD
>>>>> roles are important let me know and I will verify them.
>>>>> The primary server is hardly ever down but I have noticed when it
>>>>> is
>>>>> dns name resolution slows down because web pages take longer to
>>>>> load. This got me investigating the configs and this is what I
>>>>> found.
>>>>> victory1
>>>>> forwarders=opendns servers=208.67.222.222/208.67.220.220
>>>>> forward lookup zone=victory.org(AD integrated, primary, zone
>>>>> transfers
>>>>> not
>>>>> allowed)
>>>>> victory2
>>>>> forwarders=192.168.1.17
>>>>> forward lookup zone=victory.org(AD integrated, primary, zone
>>>>> transfers
>>>>> allowed to any server)
>>>>> This would explain when victory1 is down dns takes longer because
>>>>> victory2 has to go to root hints for dns. I propose to change to
>>>>> this
>>>>> config.
>>>>> victory1
>>>>> forwarders=opendns servers=208.67.222.222/208.67.220.220
>>>>> forward lookup zone=victory.org(AD integrated, primary, zone
>>>>> transfers
>>>>> allowed to any server)
>>>>> victory2
>>>>> forwarders=opendns servers=208.67.222.222/208.67.220.220
>>>>> forward lookup zone=victory.org(AD integrated, primary, zone
>>>>> transfers
>>>>> allowed to any server)
>>>>> If I am missing something or you need more info to sort this out
>>>>> just
>>>>> let me know. Any help is appreciated.
(Msg. 7) Posted: Mon Aug 04, 2008 11:41 am
Post subject: Re: Proper DNS configuration help [Login to view extended thread Info.] Archived from groups: per prev. post (more info?)
I just noticed this error in the system log on victory2 which occurs with
every system boot. There is no error of this type on victory1. What action
should be taken?
Event Type: Warning
Event Source: NETLOGON
Event Category: None
Event ID: 5773
Date: 08/04/2008
Time: 7:50:26 AM
User: N/A
Computer: VICTORY2
Description:
The DNS server for this DC does not support dynamic DNS. Add the DNS records
from the file '%SystemRoot%\System32\Config\netlogon.dns' to the DNS server
serving the domain referenced in that file.
"Meinolf Weber" <meiweb(nospam)@gmx.de> wrote in message
news:ff16fb66a54d68cac22e3451ac81@msnews.microsoft.com...
> Hello Mike,
>
> I would do exactly the same, remove the 192.x.x.x from the forwarders and
> add the other ones.
>
> Best regards
>
> Meinolf Weber
> Disclaimer: This posting is provided "AS IS" with no warranties, and
> confers no rights.
> ** Please do NOT email, only reply to Newsgroups
> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm >
>> I have been looking at the dns setup of a network I inherited and it
>> looks wrong to me. Before I change anything I want to verify I am on
>> the right track.
>>
>> All of my clients are configured for
>> primary dns=192.168.1.17=victory1
>> secondary dns=192.168.1.16=victory2
>> Because of this setup I always considered that victory1 was the first
>> DC configured and victory2 came next but now I am not sure. If the AD
>> roles are important let me know and I will verify them.
>>
>> The primary server is hardly ever down but I have noticed when it is
>> dns name resolution slows down because web pages take longer to load.
>> This got me investigating the configs and this is what I found.
>>
>> victory1
>> forwarders=opendns servers=208.67.222.222/208.67.220.220
>> forward lookup zone=victory.org(AD integrated, primary, zone transfers
>> not
>> allowed)
>> victory2
>> forwarders=192.168.1.17
>> forward lookup zone=victory.org(AD integrated, primary, zone transfers
>> allowed to any server)
>> This would explain when victory1 is down dns takes longer because
>> victory2 has to go to root hints for dns. I propose to change to this
>> config.
>>
>> victory1
>> forwarders=opendns servers=208.67.222.222/208.67.220.220
>> forward lookup zone=victory.org(AD integrated, primary, zone transfers
>> allowed to any server)
>> victory2
>> forwarders=opendns servers=208.67.222.222/208.67.220.220
>> forward lookup zone=victory.org(AD integrated, primary, zone transfers
>> allowed to any server)
>> If I am missing something or you need more info to sort this out just
>> let me know. Any help is appreciated.
>>
>
>
(Msg. 8) Posted: Mon Aug 04, 2008 7:36 pm
Post subject: Re: Proper DNS configuration help [Login to view extended thread Info.] Archived from groups: per prev. post (more info?)
Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
> I just noticed this error in the system log on victory2 which occurs
> with every system boot. There is no error of this type on victory1.
> What action should be taken?
>
> Event Type: Warning
> Event Source: NETLOGON
> Event Category: None
> Event ID: 5773
> Date: 08/04/2008
> Time: 7:50:26 AM
> User: N/A
> Computer: VICTORY2
> Description:
> The DNS server for this DC does not support dynamic DNS. Add the DNS
> records
> from the file '%SystemRoot%\System32\Config\netlogon.dns' to the DNS
> server
> serving the domain referenced in that file.
> For more information, see Help and Support Center at
> http://go.microsoft.com/fwlink/events.asp. > Data:
> 0000: 2c 23 00 00 ,#..
> "Meinolf Weber" <meiweb(nospam)@gmx.de> wrote in message
> news:ff16fb66a54d68cac22e3451ac81@msnews.microsoft.com...
>
>> Hello Mike,
>>
>> I would do exactly the same, remove the 192.x.x.x from the forwarders
>> and add the other ones.
>>
>> Best regards
>>
>> Meinolf Weber
>> Disclaimer: This posting is provided "AS IS" with no warranties, and
>> confers no rights.
>> ** Please do NOT email, only reply to Newsgroups
>> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm >>> I have been looking at the dns setup of a network I inherited and it
>>> looks wrong to me. Before I change anything I want to verify I am on
>>> the right track.
>>>
>>> All of my clients are configured for
>>> primary dns=192.168.1.17=victory1
>>> secondary dns=192.168.1.16=victory2
>>> Because of this setup I always considered that victory1 was the
>>> first
>>> DC configured and victory2 came next but now I am not sure. If the
>>> AD
>>> roles are important let me know and I will verify them.
>>> The primary server is hardly ever down but I have noticed when it is
>>> dns name resolution slows down because web pages take longer to
>>> load. This got me investigating the configs and this is what I
>>> found.
>>>
>>> victory1
>>> forwarders=opendns servers=208.67.222.222/208.67.220.220
>>> forward lookup zone=victory.org(AD integrated, primary, zone
>>> transfers
>>> not
>>> allowed)
>>> victory2
>>> forwarders=192.168.1.17
>>> forward lookup zone=victory.org(AD integrated, primary, zone
>>> transfers
>>> allowed to any server)
>>> This would explain when victory1 is down dns takes longer because
>>> victory2 has to go to root hints for dns. I propose to change to
>>> this
>>> config.
>>> victory1
>>> forwarders=opendns servers=208.67.222.222/208.67.220.220
>>> forward lookup zone=victory.org(AD integrated, primary, zone
>>> transfers
>>> allowed to any server)
>>> victory2
>>> forwarders=opendns servers=208.67.222.222/208.67.220.220
>>> forward lookup zone=victory.org(AD integrated, primary, zone
>>> transfers
>>> allowed to any server)
>>> If I am missing something or you need more info to sort this out
>>> just
>>> let me know. Any help is appreciated.
All times are: Eastern Time (US & Canada) (change) Goto page 1, 2
Page 1 of 2
You can post new topics in this forum You can reply to topics in this forum You can edit your posts in this forum You can delete your posts in this forum You can vote in polls in this forum
Home
Forums
Home
FAQ
Profile
Private Messages
Log in
Windows Other