Solved

Transfer dns from old server (DC) across to new server (DC)

Posted on 2008-10-24
14
220 Views
Last Modified: 2010-04-21
Stituation and set up
Windows 2003 ServerDomain Controller DNS old hardware
Windows 2003 Server Domain Controller new hardware
I wish to start transfering DNS from old to new - can someone explain process?
0
Comment
Question by:boomerbostock
  • 7
  • 7
14 Comments
 
LVL 70

Expert Comment

by:Chris Dent
ID: 22794392

Hey,

The first step is to check that the zone is currently set to Active Directory Integrated. If it is, the steps are simply these:

1. Install the DNS Service on the new DC
2. Wait

As the zone replicates with AD it should pop up on the new DC very soon after the DNS service is installed (if not immediately).

Once the service is up and running clients and servers will have to be encouraged to refer to it.

HTH

Chris
0
 

Author Comment

by:boomerbostock
ID: 22794421
what is the process for that please?
0
 
LVL 70

Expert Comment

by:Chris Dent
ID: 22794447

For changing clients?

For normal computers it would ordinarily mean modifying the DNS server handed out by your DHCP server. For servers it means manually changing TCP/IP configuration.

Chris
0
 

Author Comment

by:boomerbostock
ID: 22794475
sorry Chris i meant checking if old server in active directory intergrated mode
0
 
LVL 70

Expert Comment

by:Chris Dent
ID: 22794529

Ahh sure :)

1. Open the DNS Console on the existing DC
2. Expand Forward Lookup Zones
3. Right click and open Properties for your zone
4. Verify that it lists "Type" as "Active Directory-Integrated" on the General tab

Chris
0
 

Author Comment

by:boomerbostock
ID: 22794579
ok thanks
Zone consist of these
domainname.com.au = primary
domainname.internal = active directory integrated
domainname.com = active directory integrated

Now i have dns running on new server it has replicate all bar the primary zone from the old server. Any idea  why this would be? I didnt set up the old server so not sure why primary..any thoughts?
0
 
LVL 70

Expert Comment

by:Chris Dent
ID: 22794608

The Primary (without AD integration) won't automatically appear because there's no automatic replication method for standard Primary zones. You have a few choices on how we deal with it.

1. Convert it to AD Integrated
Or
2. Configure a Secondary Zone (Forward Lookup Zones / New) on the new DC

Before we choose which we need to know why the zone is there. Is it your public domain name? And if it is, does that version provide answers for clients on the internet?

Chris
0
Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

 

Author Comment

by:boomerbostock
ID: 22794682
yes its public and provides internet answers
0
 
LVL 70

Expert Comment

by:Chris Dent
ID: 22794707

Okay, then you must use the Secondary zone. On the current DC:

1. Open the DNS Console
2. Expand Forward Lookup Zone
3. Select domainname.com.au and open Properties
4. Select Zone Transfers
5. Permit Zone Transfers to the new DC (private / internal IP)
6. Optionally configure Notify, again to the IP of the new DC (private / internal IP)

Then on the new DC:

1. Open the DNS Console
2. Select Forward Lookup Zones
3. Create a new Zone. Type is Secondary
4. Name is domainame.com.au
5. Master is the internal / private IP of the first DC
6. Once the zone creation wizard completes verify that the Transfer from Master option (right click on the zone) works

Now we need to do a bit more work...

1. Correct the NS Records for domainname.com.au so that only Public IP addresses are listed
2. Ensure that the new DC can be reached from the public (it will need its own IP address)
3. You may have to update the name servers for your zone with your registrar

Note that if the new server is taking over from the old you can skip some of those steps and simply redefine the inbound NAT from your Firewall to the DNS server. You will still need to check the NS records are correct for hosting a public zone.

In this case you would open the Properties for the Secondary zone, select Change next to Type, then make the zone Primary (not AD Integrated).

Chris
0
 

Author Comment

by:boomerbostock
ID: 22794861
ok done - the option to transfer from master does that mean i can take control and transfer to new machine by choosing this? As i will be dcpromo the old machine out of the domain when all my changes done.
0
 
LVL 70

Accepted Solution

by:
Chris Dent earned 500 total points
ID: 22794869

That just tells it to take another copy from the Primary. You'll have to change the Type to Primary to fully take control over it. There should be a Change button next to the Type entry in the properties for the Secondary zone that allows that.

Once you do that, verify the SOA and NS records in the zone, they must be correct for the public.

Chris
0
 

Author Closing Comment

by:boomerbostock
ID: 31509555
Thanks heaps Chris
0
 

Author Comment

by:boomerbostock
ID: 22795003
Chris sorry should have asked
Can i go to old server and change that to secondary and then go to new server and change to primary?
0
 
LVL 70

Expert Comment

by:Chris Dent
ID: 22795122

You'd have to delete the primary zone first, don't do that until you have another primary up and running.

Once it's deleted you can safely add it back as a Secondary zone. Remember to enable Zone Transfers on the new primary (new DC).

Chris
0

Featured Post

Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

Join & Write a Comment

This article is intended as an extension of a blog on Aging and Scavenging by the MS Enterprise Networking Team. In brief, Scavenging is used as follows: Each record in a zone which has been dynamically registered with an MS DNS Server will have…
One of the most often confused topics in the area DNS is the idea of GLUE records. Specifically, what they are, when they are needed, when they are provided, and how they are created. First, WHAT IS GLUE? To understand GLUE, you must first under…
Excel styles will make formatting consistent and let you apply and change formatting faster. In this tutorial, you'll learn how to use Excel's built-in styles, how to modify styles, and how to create your own. You'll also learn how to use your custo…
When you create an app prototype with Adobe XD, you can insert system screens -- sharing or Control Center, for example -- with just a few clicks. This video shows you how. You can take the full course on Experts Exchange at http://bit.ly/XDcourse.

760 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now