• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 313
  • Last Modified:

Is it possible to create a **child of a child domain**?

Hi everybody,

I'm setting up a small Win 2k Adv Srv. network for testing purpouses that look like this:


....................................................... Primaty Domain  + DNS Server acme.com (192.168.0.103)......................................................
.............................................................................|...........................................................|.................................................
.........................................Child D wc.acme.com (.106 / DNS .103).......................Child D ec.acme.com (.105 / DNS .103)...
...............................................|.............................|................................................|............................................|...............
c of c sf.wc.acme.com (.107 /DNS .103)........la.wc.acme.com (.108/.103).........nyc.ec.acme.com(.109/.103).....no.ec.acme.com (110/103)

So far I've got the second layer (wc, ec) running, but when I tried to set up the 3rd layer (sf,la,nyc,no).  I get a "could not find the domain controller for this domain". Do I need an enterprise server to have multiple child domains? Or do i have to set up forward loopback zones on acme.com?

I've pinged all machines, checked protocols and ip configs and everything went pretty smooth. The only thing I couldn't do was run a successful nslookup in any machine (even wc and ec), which I think might be the issue.

thanks per advance for any feeback,
MOP

Ps.: pardon the diagram, if could i would attach a visio, but for now thats is the only thing i can do.
0
bat_mop
Asked:
bat_mop
  • 4
  • 4
  • 2
  • +1
1 Solution
 
chicagoanCommented:
Looks like your DNS is hosed, get A records in the authoritative DNS server and make sure the subordinates are doing their zone transfers or at least know where the root server for you domain is.
0
 
bat_mopAuthor Commented:
thanks for the quick reply; The DNS root server is acme.com (FQDN jon.acme.com). How do I go about to make sure the subordinates are doing zone transfers?
0
 
bat_mopAuthor Commented:
Im reading

Understanding zones and zone transfer @ http://www.microsoft.com/windows2000/en/server/help/default.asp?url=/windows2000/en/server/help/sag_DNS_und_ZoneTransfers.htm

but I still cant understand how I ensure proper zone transfers in the subordniate
0
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
chicagoanCommented:
Are these on private ip?

is everything acme.com ?

is it really .com?


0
 
ShineOnCommented:
I think you want to establish DNS servers at the first child level with lookup to the parent level, rather than referring all back to the parent.
0
 
chicagoanCommented:
You can have them everywhere, the question is who is authoritative for which domain, and do they know about each other.

on a wan you'd normally have the root authoritative and children subordinate to ease administration, but you have to plan your domain names carefully

If you have pre-existing domains you're subsuming you'd leave their DNS alone, but the parent has to know who's authoritative in order to find the children. Using the .com top level domain on private ip make this all very messy especially if the chosen domain id registered.


0
 
bat_mopAuthor Commented:
chicagoan: The whole thing is running on my lan with no access to the web. Like I've previously stated, I'm just running a test.

shineon: I could try that, but unfortunately that is not what i want. I would like the acme.com to be the only dns server.
0
 
ShineOnCommented:
Maybe it's a routing issue.  You're trying to do all of this using a flat IP scheme. You may want to look into subnetting or try using different networks for your child domains.
0
 
chicagoanCommented:
The you're going to have to point all your machines at acme.com for their DNS and have A records for all the machines on the network for them to be able to contact one another.
0
 
bat_mopAuthor Commented:
MODERATOR:

I would llike to get redeem my points if possible. I found the solution on my own.

A simple DNS propagation on the server side allowed the grandchilds to see the childs and vice-versa
0
 
CetusMODCommented:
PAQed, with points refunded (500)

CetusMOD
Community Support Moderator
0

Featured Post

Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

  • 4
  • 4
  • 2
  • +1
Tackle projects and never again get stuck behind a technical roadblock.
Join Now