DNS forwarding in W2k3

Posted on 2005-04-18
Medium Priority
Last Modified: 2010-04-18
Greetings.. i need to setup dns forwarders to begin hosting multiple DNS entries.  this is a breakdown of my network.

i have an active Domain Controller in the internal network and i have two servers that are not joined to the domain.  do i need to join them?  all of my servers are running dual nics. one nic on the public network another on the private network for admin purposes.  

how do i register my servers as forwarders to the rest of the internet?
how do i setup the servers correctly to preform the above tasks?
how do i bring my domain ie xyz.com to my own server and gain full control. (without redirecting from another name server)
Question by:johnkesoglou
  • 2
  • 2
LVL 71

Expert Comment

by:Chris Dent
ID: 13811291


This is a slightly confusing set of questions...

What do you mean as Forwarders to the rest of the internet? By default 2003 servers perform Root Hints lookups (lookup via the servers in charge of the "." zone), setting up a Forwarder is an option where instead of looking up records from the Root servers you ask another server to do it for you. Equally, other servers can forward requests to you if they choose as long as you support recursive queries.

The second question isn't particularly clear, what set of tasks would you like them to perform?

I'm sure you'll like the answer to the first question the most though ;)

All requests for domains are bounced off several name servers before they get to the level of xyz.com. First the request goes to the servers listed in the Root Hints file, the servers in charge of "." - the Root Servers (a.root-servers.net to m.root-servers.net). Then they go to the TLD (Top Level Domain) servers, like the servers in charge of .com. Finally they come to your servers, in charge of xyz.com.

In order for all this to work, and for you to have full control over xyz.com you must register your DNS servers with the Domain Registrar, this is referred to as Glue at the parent name servers. Generally this is done by giving name servers to your registrar (in the case of .com this is Verisign: http://www.verisign.com/index.html).

If you could clarify on the first two parts, and let me know if the last makes sense to you.



Author Comment

ID: 13826564

thanks for the info on verisign!  you put me into the right track.  as for my first set of questions: i have set up my dns servers as forwarders already, do i need to do anything else to them in order to become a registrar?

LVL 71

Accepted Solution

Chris Dent earned 2000 total points
ID: 13827160

You can't become a registrar yourself - but that's probably just confused terms.

What you can do is register your DNS servers as the Name Servers for your domain with your registrar (like Verisign). That means your Name Servers will be responsible for your domain name and all the records within it.

Ultimately when someone wants an address for something ending with .com they go and ask Verisign. Then Verisign tells them where to find the name servers for a particular domain name.

Forwarders aren't necessary for this, to a large extent they are unrelated to making your server authoritative for your domain. Forwarders deal with how Internet Names are resolved by your server. So if someone asked your server what the IP for www.google.com was your server would Forward the request onto another server. If you didn't have Forwarders configured your server would go and ask the Root Servers for directions.

All that make sense?

Author Comment

ID: 13931716
sorry for the delay!  thank you for your commments they help out alot

Featured Post

Transaction-level recovery for Oracle database

Veeam Explore for Oracle delivers low RTOs and RPOs with agentless transaction log backup and transaction-level recovery of Oracle databases. You can restore the database to a precise point in time, even to a specific transaction.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Numerous times I have been asked this questions that what is it that makes my machine log on so slow, there have been cases where computers took 23 minute exactly after taking password and getting to the desktop. Interesting thing was the fact th…
On July 14th 2015, Windows Server 2003 will become End of Support, leaving hundreds of thousands of servers around the world that still run this 12 year old operating system vulnerable and potentially out of compliance in many organisations around t…
This Micro Tutorial will teach you how to add a cinematic look to any film or video out there. There are very few simple steps that you will follow to do so. This will be demonstrated using Adobe Premiere Pro CS6.
Are you ready to place your question in front of subject-matter experts for more timely responses? With the release of Priority Question, Premium Members, Team Accounts and Qualified Experts can now identify the emergent level of their issue, signal…

807 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question