bat_mop
asked on
Is it possible to create a **child of a child domain**?
Hi everybody,
I'm setting up a small Win 2k Adv Srv. network for testing purpouses that look like this:
.......................... .......... .......... ......... Primaty Domain + DNS Server acme.com (192.168.0.103)........... .......... .......... .......... .......... ...
.......................... .......... .......... .......... .......... .......... .|........ .......... .......... .......... .......... .......... .|........ .......... .......... .......... .......... .
.......................... .......... .....Child D wc.acme.com (.106 / DNS .103)..................... ..Child D ec.acme.com (.105 / DNS .103)...
.......................... .......... .......... .|........ .......... .......... .|........ .......... .......... .......... .......... |......... .......... .......... .......... .....|.... .......... .
c of c sf.wc.acme.com (.107 /DNS .103)........la.wc.acme.co m (.108/.103).........nyc.ec .acme.com( .109/.103) .....no.ec .acme.com (110/103)
So far I've got the second layer (wc, ec) running, but when I tried to set up the 3rd layer (sf,la,nyc,no). I get a "could not find the domain controller for this domain". Do I need an enterprise server to have multiple child domains? Or do i have to set up forward loopback zones on acme.com?
I've pinged all machines, checked protocols and ip configs and everything went pretty smooth. The only thing I couldn't do was run a successful nslookup in any machine (even wc and ec), which I think might be the issue.
thanks per advance for any feeback,
MOP
Ps.: pardon the diagram, if could i would attach a visio, but for now thats is the only thing i can do.
I'm setting up a small Win 2k Adv Srv. network for testing purpouses that look like this:
..........................
..........................
..........................
..........................
c of c sf.wc.acme.com (.107 /DNS .103)........la.wc.acme.co
So far I've got the second layer (wc, ec) running, but when I tried to set up the 3rd layer (sf,la,nyc,no). I get a "could not find the domain controller for this domain". Do I need an enterprise server to have multiple child domains? Or do i have to set up forward loopback zones on acme.com?
I've pinged all machines, checked protocols and ip configs and everything went pretty smooth. The only thing I couldn't do was run a successful nslookup in any machine (even wc and ec), which I think might be the issue.
thanks per advance for any feeback,
MOP
Ps.: pardon the diagram, if could i would attach a visio, but for now thats is the only thing i can do.
Looks like your DNS is hosed, get A records in the authoritative DNS server and make sure the subordinates are doing their zone transfers or at least know where the root server for you domain is.
ASKER
thanks for the quick reply; The DNS root server is acme.com (FQDN jon.acme.com). How do I go about to make sure the subordinates are doing zone transfers?
ASKER
Im reading
Understanding zones and zone transfer @ http://www.microsoft.com/windows2000/en/server/help/default.asp?url=/windows2000/en/server/help/sag_DNS_und_ZoneTransfers.htm
but I still cant understand how I ensure proper zone transfers in the subordniate
Understanding zones and zone transfer @ http://www.microsoft.com/windows2000/en/server/help/default.asp?url=/windows2000/en/server/help/sag_DNS_und_ZoneTransfers.htm
but I still cant understand how I ensure proper zone transfers in the subordniate
Are these on private ip?
is everything acme.com ?
is it really .com?
is everything acme.com ?
is it really .com?
I think you want to establish DNS servers at the first child level with lookup to the parent level, rather than referring all back to the parent.
You can have them everywhere, the question is who is authoritative for which domain, and do they know about each other.
on a wan you'd normally have the root authoritative and children subordinate to ease administration, but you have to plan your domain names carefully
If you have pre-existing domains you're subsuming you'd leave their DNS alone, but the parent has to know who's authoritative in order to find the children. Using the .com top level domain on private ip make this all very messy especially if the chosen domain id registered.
on a wan you'd normally have the root authoritative and children subordinate to ease administration, but you have to plan your domain names carefully
If you have pre-existing domains you're subsuming you'd leave their DNS alone, but the parent has to know who's authoritative in order to find the children. Using the .com top level domain on private ip make this all very messy especially if the chosen domain id registered.
ASKER
chicagoan: The whole thing is running on my lan with no access to the web. Like I've previously stated, I'm just running a test.
shineon: I could try that, but unfortunately that is not what i want. I would like the acme.com to be the only dns server.
shineon: I could try that, but unfortunately that is not what i want. I would like the acme.com to be the only dns server.
Maybe it's a routing issue. You're trying to do all of this using a flat IP scheme. You may want to look into subnetting or try using different networks for your child domains.
The you're going to have to point all your machines at acme.com for their DNS and have A records for all the machines on the network for them to be able to contact one another.
ASKER
MODERATOR:
I would llike to get redeem my points if possible. I found the solution on my own.
A simple DNS propagation on the server side allowed the grandchilds to see the childs and vice-versa
I would llike to get redeem my points if possible. I found the solution on my own.
A simple DNS propagation on the server side allowed the grandchilds to see the childs and vice-versa
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.