DNS question: AD and external DNS

Discussion in 'DNS Server' started by James Reichner, Mar 1, 2004.

  1. I have a Win2K server that is providing DNS service for our AD config. I
    have a second DNS that is setup to forward requests to our ISP for web. Is
    there anyway to beable to service both types of request on one DNS server?
    What are the pros and cons if any?

    Thanks in advance for your time!
    James Reichner, Mar 1, 2004
  2. James Reichner

    sharad Guest

    Yes it is possible of course.
    Win 2000 must point it's primary DNS to itself
    and same with the clients.
    So you must have specified Secondary DNS as the other DNS
    your are running, on the server and clients.
    So either the server and clients are seeing a short delay to resolve
    external queries, since first they will contact the primary DNS and
    upon timeout contact the secondary.
    OR unless you have specifically made win 2000 DNS a root server,
    it might be resovling external queries it self using Root Hints and
    the other DNS you have setup might not be in use at all.
    (Try stopping the second DNS server, if your clients still can brwose
    internet then this is the case.)

    Pros: No need to run two DNS, and have different DNS configuration
    (primary and secondary) on all the machines.
    Resolution will be faster since the clients won't have to wait for timeout
    on the primary DNS.

    Cons: Can't think of any as such, only can think of is, if win 2000 is down
    clients can still browse internet but this too depends on how clients access
    internet, if it's thorough ICS or RRAS on win 2000 and this also won't work.

    sharad, Mar 1, 2004
  3. I have a DC (Win2k server) running a AD integrated zone. How do I get a
    client to query an alternate DNS for access out side of our corp network
    (Basically access web site for example). Currently I cannot use this DNS
    for any external access and I am confused about how to configure it.
    James Reichner, Mar 1, 2004
  4. In
    What do you mean you cannot?
    What you can't do is use any other DNS in TCP/IP properties of any member of
    the DC's Domain, other than the DC. If you need external access you will
    need to configure the DC to resolve internet names, either by the use of
    root hints or forwarders.

    Best regards,
    Kevin D4 Dad Goodknecht Sr. [MVP]
    Hope This Helps
    When responding to posts, please "Reply to Group" via your
    newsreader so that others may learn and benefit from your issue.
    To respond directly to me remove the nospam. from my email.
    Use Outlook Express?... Get OE_Quotefix:
    It will strip signature out and more
    Keep a back up of your OE settings and folders with
    Kevin D. Goodknecht [MVP], Mar 1, 2004
