[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1011
  • Last Modified:

DNS suffix

Ok, I have two domain trees here I joined together to create a forest.

spira.com  and dissolved.com


if a user in my spira.com domain wants to ping another client in the spira.com domain, all he has to do is
>ping clientx


however, if a user in spira.com domain wants to ping a client in the dissolved.com domain, he has to use the FQDN.


I think this has to do with suffix settings if I'm not mistaken. Is there a way I can set my clients DNS, so they can ping just the computer name of the other domain. Without using it's FQDN.
0
dissolved
Asked:
dissolved
  • 2
  • 2
2 Solutions
 
cfairleyCommented:
Hello dissolved,

You can add a secondary DNS zone for spira.com on your DNS server in dissolved.com.  2003 has a feature called conditional forwarding that handles this, just FYI.  To have a client in dissolved.com ping a client in spira.com, add a secondary DNS for dissolved in the spira domain.

Thanks,
cfairley
0
 
dissolvedAuthor Commented:
yep, thats what I did. I added a secondary zone.  Without the secondary zone, I was unable to even resolve  client.dissolved.com

After adding the secondary zone, I was able to resolve client.dissolved.com
I'm guessing I HAVE to use the FQDN when I ping, since I'm pinging another domain?
0
 
cfairleyCommented:
Dissolved, I just remembered something, now that I'm more awake.  if you go to the TCPIP settings and DNS tab, there is a box that allows you to add suffixes to be search for when just the computer name is pinged or communicated with.  For clients in dissolved.com, the search order should be dissolved.com first and then spira.com.  just the opposite for clients in the spira.com domain.  That way when you ping let's say "computer 1", it will first try computer1.dissolved.com and then computer1.spiral.com.  DHCP can also populate this field for you.
0
 
oBdACommented:
The DNS suffix search list is the correct place, but unfortunately, you can't use DHCP to push out the search list. DHCp can only hand out a connection specific suffix, not a list. Note that once you configure a DNS suffix list to search other domains, you'll *have* to specify the primary DNS suffix as well, as this won't be used anymore for name resolution.
You can push out the search list in W2k with a customized group policy template; this is a "Per Computer" setting.
Once you've imported the adm file into the group policy editor, you'll have to change the view for the Administrative Templates settings to allow for "not completely manageable policies".

How to Configure a Domain Suffix Search List on the Domain Name System Clients
http://support.microsoft.com/?kbid=277753

Windows 2000 Domain Suffix Search List Entry Limitation
http://support.microsoft.com/?kbid=312539

====8<----[tcpip.adm]----
CLASS MACHINE

CATEGORY !!AdditionalSettings

  CATEGORY !!TCPIP

    POLICY !!DNS
      KEYNAME "System\CurrentControlSet\Services\Tcpip\Parameters"

      PART !!DNSWarning TEXT END PART
      PART !!SuffixSearch TEXT END PART
      PART " " EDITTEXT
        VALUENAME "SearchList"
      END PART

    END POLICY ; DNS

  END CATEGORY ; TCPIP

END CATEGORY

[strings]
AdditionalSettings=Additional Settings
TCPIP=TCP/IP Settings
DNS=Set DNS Properties
DNSWarning=Don't set this policy to "Disabled"!
SuffixSearch=DNS suffix search (separate multiple entries with a ","):
====8<----[tcpip.adm]----
0
 
dissolvedAuthor Commented:
great  info, thanks guys
0

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now