Bind 9.2 and Windows DNS

Posted on 2005-04-08
Last Modified: 2013-12-16

I have an internal dns server for our windows domain, and an external dns server for pur public address space.

For local domains it is necessary to add host entries in both the windows domain and on the linux server.

is there a way to configure the windows dns server running on win2k to look at the external dns sesrver if it does not find an address for our local domain on the windowx box.

Example: is on the external network at a colo space. On the windows server if you do not add it is not resolved. So to fix that we have to keep to databases up. We would only like to keep 1 database for the external hosts.

Thanks for any info.

Question by:sstrange
    LVL 38

    Expert Comment

    > is there a way to configure the windows dns server running on win2k to look at the external dns sesrver
    Add the forwarder (which is your external DNS server) in Win2k DNS server.
    So it will pass the DNS query to the forwarder if the query is not in its database.

    Author Comment

    Thanks, I already have a forwarder in there pointing to my external server. If it is a non local domain the forwarding works. If it is a local domain then the windows 2000 dns server does not forward this to the forwarder.

    Is this possibility a limitation of win2k and server 2003 will work differently?

    LVL 38

    Expert Comment

    >  If it is a local domain then the windows 2000 dns server does not forward this to the forwarder.
    If they are serve for the same domain, then you can setup master (Linux DNS server) and slave (Win2k DNS).
    So the slave will request the zone transfer from time to time to sync the database.

    Author Comment

    Correct but if I set up the windows dns server as a slave then the dynamic dns for the windows boxes will not get registered.

    LVL 38

    Accepted Solution

    Well, one idea come out my brain is change your DHCP server setting and set the external DNS server IP for the
    first query server in the list.
    So the client query the Linux DNS server first.

    I'm not sure Win2k DNS can do a zone transfer from master to slave. You might also want to check it out.
    LVL 6

    Assisted Solution

    Just a few notes:
    Win2k DNS can do a zone transfer if it is set to slave and allows Non Secure updates (this is the case).
    You could try setting the linux DNS as secondary DNS server, so if the query to the win box fails, it will query BIND.

    Setting the BIND dns as primary dns can bring some logon delays with the win workstations (the Domain Controller role depends a lot on DNS for querying srv records.

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Why You Should Analyze Threat Actor TTPs

    After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

    In this tutorial I will explain how to make squid prevent malwares in five easy steps: Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. It reduces bandwidth and improves response times by caching and reusing frequently-…
    The purpose of this article is to demonstrate how we can use conditional statements using Python.
    Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…
    Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

    779 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    11 Experts available now in Live!

    Get 1:1 Help Now