DNS DNS DNS DNS! Pls. help.

Discussion in 'DNS Server' started by Cant resolve Host Name, Mar 18, 2005.

  1. Here's my scenario: I have a Forest Domain name do.contoso.com and my forest
    root domain controller is srv1.do.contoso.com. The Regional domain is
    ps.do.contoso.com and the domain controller name is srv2.ps.do.contoso.com.
    The DNS of these two servers is Active directory integrated.

    Im trying to resolve the host name srv2 to IP Address from the forest domain.
    ex. ping srv2 = cannot resolved!
    ping srv2.ps.do.contoso.com =works fine!

    ideally I should able to ping only the srv2 because i dont want my users to
    remember the full FQDN for them to access resources from the subdomain.

    I tried the following configuration, but still no luck...
    Configuration 1:
    Delegation created at do.contoso.com zone. this will point to subdomain
    ps.do.contoso.com. NS RR is created under this delegation.
    No addtional zone created.

    Configuration 2:
    Delegation created at do.contoso.com zone. this will point to subdomain
    ps.do.contoso.com. NS RR is created under this delegation.
    Stub Zone is created for ps.do.contoso.com. NS, A, and SOA Resource
    Record is created.

    I also tested if I have broken delegation using nslookup command.
    set q=a, set q=ns, set norecursion. Fortunately the FQDN resolved to IP
    address but with a heading "Non Authoritive". Why "Non Authoritive"
    considering this is a regional domain which was created using a wizard.

    Note: I dont wanna used forwarding or recurssion for me to resolved
    subdomain hostname from my root domain.
     
    Cant resolve Host Name, Mar 18, 2005
    #1
    1. Advertisements

  2. Cant resolve Host Name

    Mr. Smith Guest

    FQDN is for DNS use
    The NetBIOS name would be the 'srv2' part.
    So you cant resolve the netbios name?
    of this server
     
    Mr. Smith, Mar 18, 2005
    #2
    1. Advertisements

  3. Cant resolve Host Name

    Botchf Guest

    Are you telling me the only way I can access resources from the sub-domain is
    to type-in the FQDN \\srv2.ps.do.contoso.com and not \\srv2. I dnt think so!

    Howcome a workstsation on my sub-domain can ping srv1, withouth typing the
    FQDN. The reason being is because my regional domain is configured for
    "recursive name resolution root hints". Since my forest domain is configured
    for "delegation" the logic should be the same.
     
    Botchf, Mar 18, 2005
    #3
  4. Cant resolve Host Name

    Todd J Heron Guest

    Inline...

    "Here's my scenario: I have a Forest Domain name do.contoso.com and my
    forest root domain controller is srv1.do.contoso.com. The Regional domain is
    ps.do.contoso.com and the domain controller name is srv2.ps.do.contoso.com.
    The DNS of these two servers is Active directory integrated.

    Im trying to resolve the host name srv2 to IP Address from the forest
    domain.
    ex. ping srv2 = cannot resolved!
    ping srv2.ps.do.contoso.com =works fine!"

    From what forest domain? I assume you meant from within the child domain.
    Assuming that, on the problem machine you attempting to resolve srv2 from,
    you need to add a DNS Suffix Search List entry on under the TCP/IP
    properties of the LAN network adapter, DNS tab, in the area where it says
    "Append these DNS suffixes (in order)". Simply add ps.do.contoso.com to
    this list. Then run ipconfig /flushdns at a CMD prompt and attempt to ping
    srv2 again. Should work all day long, since it looks like you set up
    delegations properly.

    "ideally I should able to ping only the srv2 because i dont want my users to
    remember the full FQDN for them to access resources from the subdomain."

    I don't blame you.

    "I tried the following configuration, but still no luck...
    Configuration 1:
    Delegation created at do.contoso.com zone. this will point to subdomain
    ps.do.contoso.com. NS RR is created under this delegation.
    No addtional zone created."

    That's fine.

    "Configuration 2:
    Delegation created at do.contoso.com zone. this will point to subdomain
    ps.do.contoso.com. NS RR is created under this delegation.
    Stub Zone is created for ps.do.contoso.com. NS, A, and SOA Resource
    Record is created."

    That's fine too.

    "I also tested if I have broken delegation using nslookup command.
    set q=a, set q=ns, set norecursion. Fortunately the FQDN resolved to IP
    address but with a heading "Non Authoritive". Why "Non Authoritive"
    considering this is a regional domain which was created using a wizard."

    Becaue the nslookup command is set by default to query the DNS servers
    configured on the local machine. A delegation means the DNS server is not
    authoritative for that DNS domain.

    "Note: I dont wanna used forwarding or recurssion for me to resolved
    subdomain hostname from my root domain."

    One does't have to, provided they make proper use of delegations, stub
    zones, and DNS suffix search lists if they want to ping by short name.
     
    Todd J Heron, Mar 18, 2005
    #4
  5. Cant resolve Host Name

    Botchf Guest

    Inline...

    No! from the root domain, im trying to ping srv2 under do.contoso.com
    domain. I dont have problem pinging srv2 and srv1 within the child domain.
    Anyway, the solution you said works! I added ps.do.contoso.com to the DNS
    suffixes. But its just a workaround. What I wanted is the proper way of doing
    it. Note: the delegation was made to the root domain do.contoso.com.
    I think delegation means is a record in a parent zone that lists a name
    server that is authoritive for the zone in the next level of hierarchy. How
    would I know if im authoritive for that zone?
     
    Botchf, Mar 18, 2005
    #5
  6. Cant resolve Host Name

    Todd J Heron Guest

    "im trying to ping srv2 under do.contoso.com domain. I dont have problem
    Leverage Group Policy. Append a DNS Suffix Search List for all your DNS
    domains to your Windows XP clients DNS Suffix search list order under TCP/IP
    properties. By using an explicit DNS suffix search list pushed out by GPO,
    use of a short name allows the machine to attempt resolution with each entry
    in the search list. Set this via a Domain GPO.

    Default Domain Policy
    Computer Configuration
    Administrative Templates
    Network
    DNS Client
    DNS Suffix Search List: Enabled

    http://support.microsoft.com/default.aspx?scid=kb;en-us;294785
     
    Todd J Heron, Mar 18, 2005
    #6
  7. Cant resolve Host Name

    Botchf Guest

    If I do that, do I still have to create delegation on my root domain for each
    subdomain?
     
    Botchf, Mar 18, 2005
    #7
  8. Cant resolve Host Name

    Todd J Heron Guest

    If I do that, do I still have to create delegation on my root domain for
    Yes.
     
    Todd J Heron, Mar 19, 2005
    #8
  9. Cant resolve Host Name

    Botchf Guest

    Thank You Sir!

     
    Botchf, Mar 19, 2005
    #9
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.