?
Solved

Transfer dns from old server (DC) across to new server (DC)

Posted on 2008-10-24
14
Medium Priority
?
263 Views
Last Modified: 2010-04-21
Stituation and set up
Windows 2003 ServerDomain Controller DNS old hardware
Windows 2003 Server Domain Controller new hardware
I wish to start transfering DNS from old to new - can someone explain process?
0
Comment
Question by:boomerbostock
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 7
  • 7
14 Comments
 
LVL 71

Expert Comment

by:Chris Dent
ID: 22794392

Hey,

The first step is to check that the zone is currently set to Active Directory Integrated. If it is, the steps are simply these:

1. Install the DNS Service on the new DC
2. Wait

As the zone replicates with AD it should pop up on the new DC very soon after the DNS service is installed (if not immediately).

Once the service is up and running clients and servers will have to be encouraged to refer to it.

HTH

Chris
0
 

Author Comment

by:boomerbostock
ID: 22794421
what is the process for that please?
0
 
LVL 71

Expert Comment

by:Chris Dent
ID: 22794447

For changing clients?

For normal computers it would ordinarily mean modifying the DNS server handed out by your DHCP server. For servers it means manually changing TCP/IP configuration.

Chris
0
Bringing Advanced Authentication to the SMB Market

WatchGuard announces the acquisition of advanced authentication provider, Datablink, with one mission – to bring secure authentication to SMB, mid-market, and distributed enterprises with a cloud-based solution, ideal for resale via their established channel & MSSP community.

 

Author Comment

by:boomerbostock
ID: 22794475
sorry Chris i meant checking if old server in active directory intergrated mode
0
 
LVL 71

Expert Comment

by:Chris Dent
ID: 22794529

Ahh sure :)

1. Open the DNS Console on the existing DC
2. Expand Forward Lookup Zones
3. Right click and open Properties for your zone
4. Verify that it lists "Type" as "Active Directory-Integrated" on the General tab

Chris
0
 

Author Comment

by:boomerbostock
ID: 22794579
ok thanks
Zone consist of these
domainname.com.au = primary
domainname.internal = active directory integrated
domainname.com = active directory integrated

Now i have dns running on new server it has replicate all bar the primary zone from the old server. Any idea  why this would be? I didnt set up the old server so not sure why primary..any thoughts?
0
 
LVL 71

Expert Comment

by:Chris Dent
ID: 22794608

The Primary (without AD integration) won't automatically appear because there's no automatic replication method for standard Primary zones. You have a few choices on how we deal with it.

1. Convert it to AD Integrated
Or
2. Configure a Secondary Zone (Forward Lookup Zones / New) on the new DC

Before we choose which we need to know why the zone is there. Is it your public domain name? And if it is, does that version provide answers for clients on the internet?

Chris
0
 

Author Comment

by:boomerbostock
ID: 22794682
yes its public and provides internet answers
0
 
LVL 71

Expert Comment

by:Chris Dent
ID: 22794707

Okay, then you must use the Secondary zone. On the current DC:

1. Open the DNS Console
2. Expand Forward Lookup Zone
3. Select domainname.com.au and open Properties
4. Select Zone Transfers
5. Permit Zone Transfers to the new DC (private / internal IP)
6. Optionally configure Notify, again to the IP of the new DC (private / internal IP)

Then on the new DC:

1. Open the DNS Console
2. Select Forward Lookup Zones
3. Create a new Zone. Type is Secondary
4. Name is domainame.com.au
5. Master is the internal / private IP of the first DC
6. Once the zone creation wizard completes verify that the Transfer from Master option (right click on the zone) works

Now we need to do a bit more work...

1. Correct the NS Records for domainname.com.au so that only Public IP addresses are listed
2. Ensure that the new DC can be reached from the public (it will need its own IP address)
3. You may have to update the name servers for your zone with your registrar

Note that if the new server is taking over from the old you can skip some of those steps and simply redefine the inbound NAT from your Firewall to the DNS server. You will still need to check the NS records are correct for hosting a public zone.

In this case you would open the Properties for the Secondary zone, select Change next to Type, then make the zone Primary (not AD Integrated).

Chris
0
 

Author Comment

by:boomerbostock
ID: 22794861
ok done - the option to transfer from master does that mean i can take control and transfer to new machine by choosing this? As i will be dcpromo the old machine out of the domain when all my changes done.
0
 
LVL 71

Accepted Solution

by:
Chris Dent earned 2000 total points
ID: 22794869

That just tells it to take another copy from the Primary. You'll have to change the Type to Primary to fully take control over it. There should be a Change button next to the Type entry in the properties for the Secondary zone that allows that.

Once you do that, verify the SOA and NS records in the zone, they must be correct for the public.

Chris
0
 

Author Closing Comment

by:boomerbostock
ID: 31509555
Thanks heaps Chris
0
 

Author Comment

by:boomerbostock
ID: 22795003
Chris sorry should have asked
Can i go to old server and change that to secondary and then go to new server and change to primary?
0
 
LVL 71

Expert Comment

by:Chris Dent
ID: 22795122

You'd have to delete the primary zone first, don't do that until you have another primary up and running.

Once it's deleted you can safely add it back as a Secondary zone. Remember to enable Zone Transfers on the new primary (new DC).

Chris
0

Featured Post

Ransomware Attacks Keeping You Up at Night?

Will your organization be ransomware's next victim?  The good news is that these attacks are predicable and therefore preventable. Learn more about how you can  stop a ransomware attacks before encryption takes place with our Ransomware Prevention Kit!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you have a multi-homed DNS setup in windows, you can have issues with connectivity to the server that hosts the DNS services (or even member servers of your domain if this same DNS server is a DC). This is because windows registers all of its IPs…
Occasionally you run into the website or two that will not resolve properly using your own DNS servers.  Some people simply set up global forwarders for their DNS server.  I don’t recommend doing this because it can cause problems resolving addresse…
This is my first video review of Microsoft Bookings, I will be doing a part two with a bit more information, but wanted to get this out to you folks.
In this video, Percona Solution Engineer Dimitri Vanoverbeke discusses why you want to use at least three nodes in a database cluster. To discuss how Percona Consulting can help with your design and architecture needs for your database and infras…
Suggested Courses

765 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question