Question

DNS configuration issue with two DC's.

Asked by: stevensims

Please see below for my setup. Why is DC1 only showing itself in its DNS list and DC2 shows both DC's in its DNS list? Do I have the DNS not correctly setup?

DC1 Windows Server 2000
DNS list DC1

DC2 Windows Server 2003
DNS lists both DC1 and DC2

Note: On DC2 both DNS records for DC1 and DC2 are identical.



This Question has been solved and asker verified All Experts Exchange premium technology solutions are available to subscription members.

Subscribe now for full access to Experts Exchange and get

Instant Access to this Solution

  • Plus...
  • 30 Day FREE access, no risk, no obligation
  • Collaborate with the world's top tech experts
  • Unlimited access to our exclusive solution database
  • Never be left without tech help again

Subscribe Now

Asked On
2008-01-24 at 17:17:19ID23109876
Tags

Microsoft

,

Server

,

2000 2003

Topics

Domain Name Service (DNS)

,

Windows 2000 Server

,

Windows 2003 Server

Participating Experts
5
Points
125
Comments
20

Trusted by hundreds of thousands everyday for fast, accurate and reliable tech support.

  • "The time we save is the biggest benefit of Experts Exchange to Warner Bros. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange." Mike Kapnisakis, Warner Bros.
  • "Our team likes having a resource that is more secure than just using Google and most experts using this service really know their stuff. It's nice to look here first versus using Google." Dayna Sellner, Lockheed Martin
  • "Anytime that I've been stumped with a problem, 9 out of 10 times Experts Exchange has either the accepted solution or an open discussion of the potential solution to the problem." Kenny Red, eBay Inc.

See what Experts Exchange can do for you.

Got a question?

We've got the answer.

Experts Exchange has been collecting answers to technology questions since 1996…3 million and counting! If you have a question, chances are we already have your answer.

Screenshot of Experts Exchange Knowledgebase

Need individual assistance?

Our experts are ready to help.

If you can't find the exact answer you're looking for, ask our exclusive community of 50,000 experts. You’ll get a personalized answer from a trusted professional.

Screenshot of Experts Exchange Knowledgebase

Want to learn from the best?

Read articles from industry experts.

Thousands of free tech tips, tricks, how-to’s and tutorials are available in our peer reviewed articles section. See for yourself how smart our experts are, no login required.

Screenshot of an Article

Working on a long term project?

Store your work and research.

Save solutions to your questions, answers you’ve discovered through searching plus helpful articles in your personal knowledgebase for easy future access.

Screenshot of Experts Exchange Knowledgebase

Access the answers to your technology questions today.

Subscribe Now

30-day free trial. Register in 60 seconds.

What Makes Experts Exchange Unique?

Members of the expert community talk about why the experience at Experts Exchange is different than what you will find anywhere else.

Trusted by the world's most respected brands.

image of each brand's logo

Faithfully serving IT professionals since 1996.

Experts Exchange Logo

Try it out and discover for yourself.

Subscribe Now

30-day free trial. Register in 60 seconds.

Related Solutions

  1. Browser Errors on DC1 & DC2
    Hi all, Hope you can help on this one and clear up this issue once and for all. I've searched all over and have tried a things, tests, checking various settings etc These are the following events that are being logged constantly on DC1 & DC2 DC1 Event Type: Error E...
  2. Forced DC1 Demotion, now DC2 has issues
    I had two DCs in 1 domain. DC1 = Win2000 SP4 [FMSO roles / GC] DC2 = Win2003 DC1 used to be standalone DC, but about 4 months ago brought DC2 online (using ADMT) as a companion DC. Never gave it GC functions, just DNS, DCHP, and AD functions along with DC1 Decided we want...
  3. Second DC, DNS?
    Hi, I have 1 dc in my forst. I want to install a second additional dc to support the existing DC. 1) What are the benefits I will gain? 2) What are the required configurations? 3) Do I need DNS on the new DNS? I have already installed it, but I think it is not necessary. Re...
  4. DNS and DC
    when I install DC it gives me an option to install DNS now or later. If I don't install DNS neither now or later, how is the DC going to function? thanks
  5. Op. Master Role moveing from DC1 to DC2 with DC1 ha…
    I am planning to move the Operation Master Role from our DC1 (win 2000 server) to DC2 (win 2003 standard R2), where DC1 is also a DHCP server and DNS is residing there due to the Active Directory. Due to the Win 2000 being DC1 with OM role, the domain level is @ Win 2000 Nati...
  6. DNS entries point to 1 DC
    In my network I have 2 DC's. DC1 is the Forest root DC. DC2 is added as a second DC. On DC1 I installed AD intergrated DNS for the domain. To perform a redundant DNS strategy I also installed AD intergrated DNS on my second DC. The issue is that in the Forward lookup zone\my...

Free Tech Articles

  1. WARNING: 5 Reasons why you should NEVER fix a computer for free.
    It is in our nature to love the puzzle. We are obsessed. The lot of us. We love puzzles. We love the challenge. We thrive on finding the answer. We hate disarray. It bothers us deep in our soul. W...
  2. SCCM OSD Basic troubleshooting
    SCCM 2007 OSD is a fantastic way to deploy operating systems, however, like most things SCCM issues can sometimes be difficult to resolve due to the sheer volume of logs to sift through and the dispe...
  3. Migrate Small Business Server 2003 to Exchange 2010 and Windows 2008 R2
    This guide is intended to provide step by step instructions on how to migrate from Small Business Server 2003 to Windows 2008 R2 with Exchange 2010. For this migration to work you will need the fo...
  4. Create a Win7 Gadget
    This article shows you how to create a simple "Gadget" -- a sort of mini-application supported by Windows 7 and Vista. Gadgets can be dropped anywhere on the desktop to provide instant information, ...
  5. Outlook continually prompting for username and password
    There have been a lot of questions recently regarding Outlook prompting for a username and password whilst using Exchange 2007. There are a few reasons why this would happen and I will try to cover t...
  6. Backup Exchange 2010 Information Store using Windows Backup
    There seems to be quite a lot of confusion around the ability to backup Exchange 2010 using the built in Windows Backup feature. This stems from the omission of this feature prior to Exchange 2007 s...

Cloud Class Webinars

  1. Avoiding Bugs in Microsoft Access
    Alison Balter takes and in-depth look at avoiding bugs in Access. In this webinar you will learn about using the immediate window to debug your applications, invoking the debugger, using breakpoints to troubleshoot, stepping through code, setting the next statement to execute, ...
  2. Top 10 Best New Features in Visio 2010
    Scott Helmers gives live demonstrations of the top 10 new features in Visio 2010. This webinar will teach you how to create compelling diagrams by adding shapes to the page with a single click, linking the shapes in a diagram to data in Excel (or SQL Server, or SharePoint), ...
  3. IT Consultant Business Secrets Revealed
    Michael Munger, Experts Exchange tech pro and IT consultant, pulls back the curtain on his very successful businesses and answers question on every IT consultant and business owner should know about. He shares secrets on what he did to solve the 5 most common problems in IT, ...
  4. Disaster Recovery and Business Continuity
    Quest CTO, Mike Billon, gives an overview of the steps involved in building a dunamic disaster recovery plan. Through case studies and an examination of software/hardware tooles for monitoring and testing, you'll gain a better understandin of where you are, where you want ...
  5. Organize Your Visio Diagrams with Containers and Lists
    Scott Helmers uses cross functional flowcharts, wireframe diagrams, data graphic legends and seating charts to teach you: how to ustilize all three new structured diagram components in Visio 2010, the best practices for organizeing shapes in previous version of Visio, how to organize ...
  6. How to Us Objects, Properties, Events and Methods in Microsoft Access
    Alison Dalter gives an in-depbth look at objects, properties, events and methods in Microsoft Access. In this webinar you will learn about using the object browser, referring to objects, working with properties and methods, working with object variables, understanding the ...

Join the Community

Give a Little. Get a Lot.

Join the community of experts here and help other tech pros by answering question in your area of expertise. You can earn FREE access to all Experts Exchange's premium features and resources.

Join the Community

Answers

 

by: mass2612Posted on 2008-01-24 at 18:49:20ID: 20739675

Hi,

I am not sure that I completely understand your question. Are you saying that when you look at DC1 via an ipconfig /all for example you only see DC1 listed as a DNS server?

IP Address. . . . . . . . . . . . : 192.168.1.1
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.1.10
DNS Servers . . . . . . . . . . . : 192.168.1.1
                                    192.168.1.1

While on DC2 you see the IP for DC1 and DC2 listed under DNS servers?

 

by: brent_caskeyPosted on 2008-01-24 at 19:31:11ID: 20739876

I usually have both of the DNS servers in the list on both DC's

DC1 ("Primary" DNS Server)
  DNS
     DC1 (preferred)
     DC2 (alt)

DC2 ("Secondary" DNS Server)
   DNS
      DC2 (preferred)
      DC1 (alt)

However, there is a discussion on the topic here, if you want more in depth on the topic:
http://www.experts-exchange.com/OS/Microsoft_Operating_Systems/Server/2003_Server/Q_23090763.html

There are different ways to think about it. As long as you have your internal DNS servers in the list and not your ISP's/external , you should be ok. I would also recommend that if you have mutliple DC/DNS servers, that you list at least 2 in the DNS settings on each DC/DNS server (1 primary / 1 alternate).

 

by: ryansotoPosted on 2008-01-24 at 20:51:57ID: 20740189

No you DO NOT want an alternate in the server config
DC2 Windows Server 2003
DNS lists both DC1 and DC2

As stated in the link that brent gave KCTS give an explnation why.  It can create a looping effect.
Each server should point to itself for the primary and the secondary/alternate should be blank.



KCTS:I assume you mean PREFRRED not PRIMARY. Primary DNS servers are something different altogether.
Windows DNS servers should point to themselves as preferred DNS server. The Alternate DNS server should be blank - otherwise you can get "looping" occuring.

Its always a good idea to make at least one other DC a global catalog server as the others have said.

Also make sure that all clients have the address of a windows DNS server as their preferred DNS servert and the address of another windows DNS server as the alternate DNS server. Check both the DHCP options and the TCP/IP settings on the network card.

Make sure that the only place external DNS servers appear are on the Forwarding tab in DNS on the DNS servers themselves

 

by: sm_ferozPosted on 2008-01-25 at 04:35:39ID: 20741869

Hi,
You have configured DNS on windows server 2003 so for that reason it is showing 2 DNS entries and where as windows server 2000 is an Old version of OS and windows server 2003 is a upgraded version for windows 2000 ,on which computer you have configured DNS and check both forward lookup zone as well as reverse lookup zone whether you have configured your DNS correctly ,i think DC2 windows 2003 is a Domain Controller so for that reason it is showing both DC1 windows 2000 and DC2 windows 2003 itself.

 

by: brent_caskeyPosted on 2008-01-25 at 08:34:21ID: 20743880

ryansoto,

KCTS does not know what he is talking about with the alternate DNS

 

by: stevensimsPosted on 2008-01-25 at 08:36:37ID: 20743906

Hi Everyone,

Both are Domain controllers. I have listed more info below. Forward and reverse lookup works with no issues.

DC1
Ipconfig setting
DNS Primary Server DC2
DNS Primary Server DC1

DC2
Ipconfig setting
DNS Primary Server DC1
DNS Secondary Server DC2

Workstations
Ipconfig settings
DNS Primary Server DC2
DNS Secondary Server DC1

DC1
Schema Master

DC2
RID master
PDC master
Infrastructure master
Domain Naming master

Both DC's are Global Catalogs

 

by: stevensimsPosted on 2008-01-25 at 08:40:30ID: 20743957

oops!

DC1 Ipconfig settings above should be:
DNS Primary Server DC2
DNS Secondary Server DC1

 

by: brent_caskeyPosted on 2008-01-25 at 08:47:52ID: 20744031

The only thing there that might cause an issue is the Global Catalog being on the Infrastructure Master role holder. That can cause some issues but, if you only have 2 DCs, you would want to keep it the way it is so that if one DC goes down, the other can handle the login requests. If you have more than 2 DCs, then it is best practice to not have the infrastructure master on the same server as a GC.

See
http://support.microsoft.com/kb/248047
http://support.microsoft.com/kb/223346

Other than that, your config looks good.

 

by: stevensimsPosted on 2008-01-31 at 13:05:04ID: 20791118

So should both DC's be pointing to each other? I am getting ready to add another Domain Controller DC3 and will make it the preferred DNS server. So are the settings below correct? Also note, for the moment  we use a firewall router for our DHCP IP addresses. It will also be configured to have DC3 as the preferred. (eventually I will setup the DC to run DHCP)

DC2
Preferred DC3
Alternate DC2

DC3
Preferred DC3
Alternate blank

DC1
Preferred DC3
Alternate DC2

Primary DC dont exist if the DNS is integrated in Active Directory? I have never messed with having a primary DC and a secondary DC.


 

by: mass2612Posted on 2008-01-31 at 13:47:19ID: 20791558

Hi,

I have always taken the DNS config on the servers in an AD integrated setup so that each AD/DNS server points to itself as the primary DNS server and the secondary to its closest well connected AD/DNS server.

Therefore
DC1 - Prim DC1, Sec DC2
DC2 - Prim DC2, Sec DC1
DC3 - Prim DC3, Sec DC2

The secondary should be whatever server it has the most reliable network connection with.

 

by: stevensimsPosted on 2008-01-31 at 13:57:37ID: 20791662

Wouldn't this possibly create a little bit of a problem when a machine logs in? All the workstations are going to have a preferred DNS. As soon as that machine logs in it is registered in the DNS on the preferred DC. The other two DC's wont see that until the AD replicates to them.  I am not for sure if I am right here but just throwing it out there.

 

by: mass2612Posted on 2008-01-31 at 20:03:13ID: 20794114

No this would not be an issue. You want each machine to try to contact its most reliable (usually via network speed) therefore an DC running AD integrated DNS should use itself primarily for internal DNS lookups and then use forwarders for extneral DNS lookups.

The clients should use the same configuration. A client in the same site as DC1 should use DC1 as the primary DNS server and the next best option for the secondary.

 

by: stevensimsPosted on 2008-02-01 at 08:39:51ID: 20798080

Understood. However, what if all the workstations are on the same site as the three DC"s? All of my workstations are pointing to one DC.

 

by: mass2612Posted on 2008-02-01 at 13:15:46ID: 20800801

If you have 3 DC's in the one site then you could load balance them by having multiple DHCP scopes as long as they are all connected with a high speed reliable network connection it will be fine.

 

by: stevensimsPosted on 2008-02-01 at 14:32:37ID: 20801364

Hi mass2612,

Aww true I like that idea. However, my network isnt using DHCP from the servers--it will in the future though. I am trying cleanup and make better what i currently have. I didnt set this server up in the beginning.

But right now I have a VPN/Firewall router that assigns all IP addresses. It has our DC2 listed as the preferred and DC1 listed as the alternate. SO thats why i figured that all dc's and workstations should point to the preferred DC. By the way we only have about 25 users. With this configuration you still recommend the DNS servers to point to themselves?

 

by: ryansotoPosted on 2008-02-01 at 14:35:39ID: 20801381

Its been my experience that you always point the DNS servers to themselves in tcpip then in the dns forwarders tab you set to your ISP.
In your DHCP scopes is where you set multiple DNS servers so if one machine is down dns can resolved by the other dns servers listed in your scope.

 

by: mass2612Posted on 2008-02-01 at 19:14:08ID: 20802822

I would use static settings for all servers and only have the workstations assigned automatically. That way the servers can be more easily controlled.

 

by: Chris-DentPosted on 2009-06-04 at 03:36:57ID: 24545285


My unofficial recommendation would be:

Split: brent_caskey (http:#20739876), and mass2612 (http:#20791558)

Chris

20120131-EE-VQP-002

3 Ways to Join

30-Day Free Trial

The Experts

98% positive feedback on 31,087 answers since March 2000. angeliii is a Microsoft Most Valuable Professional for his work with MS SQL Server & Develoment.

He has also proven his knowledge of Visual Basic Programming, PHP Scripting and Oracle Databases.

The Experts

97% positive feedback on 10,752 answers since July 2000. lrmoore has more than 18 years experience in the networking industry.

The six-time Mircosoft MVPs specialties include firewalls, virtual private networking, and network management.

Testimonials

"...and excellent source for support... Kind of like having your very own IT dept." Electriciansnet

Testimonials

"I was apprehensive at signing up at first. However... it has already made my life as an IT administrator much easier." JaCrews

Testimonials

"WOW! You guys have great, active, and knowledgeable people on here." moore50

Business Clients

Business Clients

In the Press

"If you’ve got a question... Experts Exchange can supply an answer.”

In the Press

"...an invaluable aid for both IT professionals and those who require tech support."

In the Press

"where IT professionals provide quick answers on just about any topic"

Business Account Plans

Loading Advertisement...