Solved

DNS on secondary setup wrong

Posted on 2008-06-17
7
192 Views
Last Modified: 2011-10-19
I am deploying a new server and it is going to be a secondary DNS server.  It has already been configured as a primary dns server.  When I attempt to delete the zone, it gives the warning that it is an AD integrated zone.  Server 18 is to be the primary DNS and Davis-RKP is to be the secondary.  If I delete the zones under the Davis-RKP server will it affect the zones under the Server18 server? (see attached pic)  Or can I just change the Zone Type under Davis-RKP from Integraded to Secondary.  

Thank you very much.
DNS.JPG
0
Comment
Question by:sjsell
  • 3
  • 3
7 Comments
 
LVL 70

Expert Comment

by:KCTS
Comment Utility
Is there any reason that you are not using AD Integrated DNS?
This is much more efficient and allows you to have multiple primary DNS servers and i is a lot less hassle.
0
 
LVL 13

Assisted Solution

by:ocon827679
ocon827679 earned 25 total points
Comment Utility
Are both of these servers domain controllers?  If so, why not leave them as AD Integrated.  The pros of AD Integrated certainly out weigh the cons.  There is no advantage to a secondary zone over and AD Integrated Primary.
0
 

Author Comment

by:sjsell
Comment Utility
The book that I was reading made it sound like it can be bad to have multiple Primary DNS servers.  You should have one Primary and the rest should be secondary.  I plan on leaving server18 (what is our primary dns server) AD integrated.  I just wanted the Davis-RKP to be a secondary.  If I leave it as a primary, and I need to make a change to anything do I have to do it to all of the servers or can I just increment the serial number and it will replicate to the other DNS server?

Thanks for the amazingly fast reply.
0
Highfive + Dolby Voice = No More Audio Complaints!

Poor audio quality is one of the top reasons people don’t use video conferencing. Get the crispest, clearest audio powered by Dolby Voice in every meeting. Highfive and Dolby Voice deliver the best video conferencing and audio experience for every meeting and every room.

 
LVL 70

Accepted Solution

by:
KCTS earned 100 total points
Comment Utility
Not at all. AD Integrated DNS is more secure, integrates fully with Active Directory, if more efficient as it uses AD replication rather than relying on zone transfers and as it uses the multi-master model there is less latency as all servers can update each other. AD Integrated DNS should really be used as the default and you have to have a good reason not to use it, rather than justify its use.
0
 

Author Comment

by:sjsell
Comment Utility
Thank you.  I will leave it as AD integrated then.  Let me make sure I understand updating it then.  If I update any of the DNS servers, it will replicate to any other AD integrated DNS server?  Do I need to increment the serial on the SOA on the server I am updating or will it do that automatically when I make a change?
0
 
LVL 70

Expert Comment

by:KCTS
Comment Utility
Make the change on any server and when replication occurs the other servers will be updated automatically - no need to do anything
0
 

Author Closing Comment

by:sjsell
Comment Utility
Wow. Thank you for your fast responses.  I've been toying with joining EE for a long time and this one had me stumped so I tried a trial.  I will be joining permanently now.  Thanks and expect a LOT of questions in the future.
0

Featured Post

How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

Join & Write a Comment

As network administrators; we know how hard it is to track user’s login/logout using security event log (BTW it is harder now in windows 2008 because user name is always “N/A” in the grid), and most of us either get 3rd party tools, or just make our…
Companies that have implemented Microsoft’s Active Directory need to ensure that the Active Directory is configured and operating properly. If there are issues found and not resolved, it eventually leads the components to fail or stop working and fi…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now