Link to home
Start Free TrialLog in
Avatar of bat_mop
bat_mop

asked on

Is it possible to create a **child of a child domain**?

Hi everybody,

I'm setting up a small Win 2k Adv Srv. network for testing purpouses that look like this:


....................................................... Primaty Domain  + DNS Server acme.com (192.168.0.103)......................................................
.............................................................................|...........................................................|.................................................
.........................................Child D wc.acme.com (.106 / DNS .103).......................Child D ec.acme.com (.105 / DNS .103)...
...............................................|.............................|................................................|............................................|...............
c of c sf.wc.acme.com (.107 /DNS .103)........la.wc.acme.com (.108/.103).........nyc.ec.acme.com(.109/.103).....no.ec.acme.com (110/103)

So far I've got the second layer (wc, ec) running, but when I tried to set up the 3rd layer (sf,la,nyc,no).  I get a "could not find the domain controller for this domain". Do I need an enterprise server to have multiple child domains? Or do i have to set up forward loopback zones on acme.com?

I've pinged all machines, checked protocols and ip configs and everything went pretty smooth. The only thing I couldn't do was run a successful nslookup in any machine (even wc and ec), which I think might be the issue.

thanks per advance for any feeback,
MOP

Ps.: pardon the diagram, if could i would attach a visio, but for now thats is the only thing i can do.
Avatar of chicagoan
chicagoan
Flag of United States of America image

Looks like your DNS is hosed, get A records in the authoritative DNS server and make sure the subordinates are doing their zone transfers or at least know where the root server for you domain is.
Avatar of bat_mop
bat_mop

ASKER

thanks for the quick reply; The DNS root server is acme.com (FQDN jon.acme.com). How do I go about to make sure the subordinates are doing zone transfers?
Avatar of bat_mop

ASKER

Im reading

Understanding zones and zone transfer @ http://www.microsoft.com/windows2000/en/server/help/default.asp?url=/windows2000/en/server/help/sag_DNS_und_ZoneTransfers.htm

but I still cant understand how I ensure proper zone transfers in the subordniate
Are these on private ip?

is everything acme.com ?

is it really .com?


Avatar of ShineOn
I think you want to establish DNS servers at the first child level with lookup to the parent level, rather than referring all back to the parent.
You can have them everywhere, the question is who is authoritative for which domain, and do they know about each other.

on a wan you'd normally have the root authoritative and children subordinate to ease administration, but you have to plan your domain names carefully

If you have pre-existing domains you're subsuming you'd leave their DNS alone, but the parent has to know who's authoritative in order to find the children. Using the .com top level domain on private ip make this all very messy especially if the chosen domain id registered.


Avatar of bat_mop

ASKER

chicagoan: The whole thing is running on my lan with no access to the web. Like I've previously stated, I'm just running a test.

shineon: I could try that, but unfortunately that is not what i want. I would like the acme.com to be the only dns server.
Maybe it's a routing issue.  You're trying to do all of this using a flat IP scheme. You may want to look into subnetting or try using different networks for your child domains.
The you're going to have to point all your machines at acme.com for their DNS and have A records for all the machines on the network for them to be able to contact one another.
Avatar of bat_mop

ASKER

MODERATOR:

I would llike to get redeem my points if possible. I found the solution on my own.

A simple DNS propagation on the server side allowed the grandchilds to see the childs and vice-versa
ASKER CERTIFIED SOLUTION
Avatar of CetusMOD
CetusMOD
Flag of Netherlands image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial