How to duplicate a DNS server in Windows 2003 server?

I have a domain controller (DC1) running in Windows 2003 with DNS server. I have installed a second domain controller (DC2) and like to run DNS on it too. My goal is to replicate every DNS record on DC1 onto DC2. Can someone give out detailed steps to achieve this seamlessly?

Thanks a lot.
richtreeAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Toni UranjekConsultant/TrainerCommented:
Hi richtree,

Install DNS service on second server if not already installed.

"How To Install and Configure DNS Server in Windows Server 2003"
http://support.microsoft.com/kb/814591

Go to first server, right click your existing forward lookup zone and select and convert it to AD integrated.

"How to Convert DNS Primary Server to Active Directory Integrated"
http://support.microsoft.com/kb/198437

HTH

Toni
0
richtreeAuthor Commented:
DC1 is already AD integrated.
DC2 is installed without DNS server.
What to do next? Please.
Thanks.
0
DCenaculoCommented:
It seams to me that you have one DNS server and it is your primary server, which we call Primary Master, and it is authoritative for yous domain name zone. To create a second DNS server with every DNS records from DC1 you should install on DC2 DNS service and configure it as Secondary Master.

A secondary master for a zone pulls its records for the zone from a primary master through a process called a zone transfer. It will maintain the zone records (all dns records created on DC1 DNS) as a read-only copy and peiodically performs zone transfers from DC1 DNS to refresh the data from the primary master. A secondary master is essentially a backup DNS server.

Step by step instructions:

Install DNS service on DC2

Right-click either the server name or the Forward Lookup Zone branch and choose New Zone from the context menu to start the new zone wizard. Follow the wizard choosing secondary zone and giving de zone name (you domain name, something like "example.dom", or "mycompany.com"). This zone name is the same domain name as on DC1 DNS.

If you are using DHCP on your network you should now give this new DNS server as a backup dns server to your hosts.

If you need more help, please feel free to ask.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

richtreeAuthor Commented:
OK. In case DC1 fails, will DC2 kick in automatically?
0
richtreeAuthor Commented:
When I add DNS role in DC2 through 'Manage Your Server', I have the following 3 options:
Create a forward lookup zone
Create forward and reverse lookup zones
Configure root hints only.
So I do not see the options you mention above. Do I start in the wrong place? Please let me know.
0
DCenaculoCommented:
yes create a forward lookup zone. And yes, if DC1 fails and all your systems have dc2 as secondary dns server configured, dc2 will answer dns requests to them as if it were dc1.
0
richtreeAuthor Commented:
I see two entries under 'Forward Lookup Zones':
int.myCorp.com
myCorp.com
Which one is my real zone name?
Thanks.
0
DCenaculoCommented:
It seams to me me that you have a case where there is delegation. You should choose for start the some that appears when you ping your ip address locally.  ping -a your IP adderss.
0
richtreeAuthor Commented:
it returns dc2.int.myCorp.com.
so my zone name is 'int.myCorp.com'?
0
DCenaculoCommented:
yes, I really think it is. Continue till the end, and then tell me something.
0
richtreeAuthor Commented:
It ended with the following error message:
The forward lookup zone cannot be added to the server. The zone already exists.
At some point, I choose to copy DNS from 1.1.1.1 (=DC1).
What's wrong?
0
richtreeAuthor Commented:
But DC2 seems to have copied the DNS records from DC1. Is the above error message kind of 'expected'?
0
DCenaculoCommented:
Well it's not normal. Maybe you have choosed something wrong on the way. The important is to see if the records are there :)
0
DCenaculoCommented:
On the DNS console right-click server properties and then click the forwarders tab. Configure it as it is on DC1.
0
richtreeAuthor Commented:
Forwarders list is empty on dc1 and dc2.
I choose not to forward dns queries when installing dc2.
0
DCenaculoCommented:
You can make a test creating on dc1 some new host record (type A) in the int.mycorp.com zone and wait to see if it appears on dc2 in the int.mycorp.com that you created. It may take some time to replicate.

If everything is well with replication its time to create the other forward zone if you want.

Right-click either the server name or the Forward Lookup Zone branch and choose New Zone from the context menu to start the new zone wizard. Follow the wizard choosing active-directory integrated zone and giving de zone name (now it's mycorp.com).

You should stay with two forward zones: int.mycorp.com and mycorp.com

configure the forwaders in the dns server properties equal to DC1 and configure the second dns server on every workstation, server etc to dc2.
0
DCenaculoCommented:
If it is empty on dc1, and dc2 is a backup of it, dc2 doesn't need any forwader configured also :)
0
richtreeAuthor Commented:
Thank you very much for your timely and detailed instructions. I deeply appreciate it.
0
richtreeAuthor Commented:
Please close it. Thanks.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Active Directory

From novice to tech pro — start learning today.