Solved

Some DNS questions

Posted on 2006-06-13
4
250 Views
Last Modified: 2008-02-07
Hi,

I have 2 DNS servers, both are AD integrated (single domain), each server is in different site.
Since I'm having some DNS issues, I would like to ask you some questions:

The SOA record should point to the same server? or each SOA should point to it's server?
Since I'm only using AD integrated, may I disable zone transfers?


Thanks.
0
Comment
Question by:AbelB
  • 2
  • 2
4 Comments
 

Author Comment

by:AbelB
ID: 16892273
Oh, and another question I forgot...

In AD, under [domain]\System\MicrosoftDNS\RootDNSServers   there is nothing. is that OK? what should be here?


Thanks again.
0
 
LVL 70

Expert Comment

by:Chris Dent
ID: 16892371

> The SOA record should point to the same server? or each SOA should point to it's server?

Because the zone is AD Integrated the SOA record appears differently depending on which server you're looking at it on.

It does that because every server has access to write to the zone file (unlike a standard Primary zone which only one server can write to).

> Since I'm only using AD integrated, may I disable zone transfers?

Yes. Unless you have a specific need to have Secondary DNS Servers then there's no need to allow Zone Transfers.

> In AD, under [domain]\System\MicrosoftDNS\RootDNSServers there is nothing.
> is that OK? what should be here?

Yes that's okay, it should be empty. It's the folder itself that has the things we're interested in bound to it. It contains the list of Root Name Servers which your server will use to answer Public Queries (unless you've set it up to use Forwarders).

What kind of DNS issues are you having?

Chris
0
 

Author Comment

by:AbelB
ID: 16892563
Thanks for your answers.

I am using forwarders, shouldn't I ?

I can't point to a specific DNS issue right now, I will try to find an example and write it here.


Thanks again.
0
 
LVL 70

Accepted Solution

by:
Chris Dent earned 300 total points
ID: 16892582

There's nothing wrong with using Forwarders.

The Root Hints file (that's what's stored in the RootDNSServers bit) is how it resolves requests if you don't use Forwarders. Instead of just handing off the request to another DNS Server (the forwarder) it heads off to find the answer itself.

Chris
0

Featured Post

Courses: Start Training Online With Pros, Today

Brush up on the basics or master the advanced techniques required to earn essential industry certifications, with Courses. Enroll in a course and start learning today. Training topics range from Android App Dev to the Xen Virtualization Platform.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A common practice in small networks is making file sharing easy which works extremely well when intra-network security is not an issue. In essence, everyone, that is "Everyone", is given access to all of the shared files - often the entire C: drive …
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
This Micro Tutorial will give you a basic overview how to record your screen with Microsoft Expression Encoder. This program is still free and open for the public to download. This will be demonstrated using Microsoft Expression Encoder 4.
This is used to tweak the memory usage for your computer, it is used for servers more so than workstations but just be careful editing registry settings as it may cause irreversible results. I hold no responsibility for anything you do to the regist…

813 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now