Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

Transfer dns from old server (DC) across to new server (DC)

Posted on 2008-10-24
14
Medium Priority
?
269 Views
Last Modified: 2010-04-21
Stituation and set up
Windows 2003 ServerDomain Controller DNS old hardware
Windows 2003 Server Domain Controller new hardware
I wish to start transfering DNS from old to new - can someone explain process?
0
Comment
Question by:boomerbostock
  • 7
  • 7
14 Comments
 
LVL 71

Expert Comment

by:Chris Dent
ID: 22794392

Hey,

The first step is to check that the zone is currently set to Active Directory Integrated. If it is, the steps are simply these:

1. Install the DNS Service on the new DC
2. Wait

As the zone replicates with AD it should pop up on the new DC very soon after the DNS service is installed (if not immediately).

Once the service is up and running clients and servers will have to be encouraged to refer to it.

HTH

Chris
0
 

Author Comment

by:boomerbostock
ID: 22794421
what is the process for that please?
0
 
LVL 71

Expert Comment

by:Chris Dent
ID: 22794447

For changing clients?

For normal computers it would ordinarily mean modifying the DNS server handed out by your DHCP server. For servers it means manually changing TCP/IP configuration.

Chris
0
Who's Defending Your Organization from Threats?

Protecting against advanced threats requires an IT dream team – a well-oiled machine of people and solutions working together to defend your organization. Download our resource kit today to learn more about the tools you need to build you IT Dream Team!

 

Author Comment

by:boomerbostock
ID: 22794475
sorry Chris i meant checking if old server in active directory intergrated mode
0
 
LVL 71

Expert Comment

by:Chris Dent
ID: 22794529

Ahh sure :)

1. Open the DNS Console on the existing DC
2. Expand Forward Lookup Zones
3. Right click and open Properties for your zone
4. Verify that it lists "Type" as "Active Directory-Integrated" on the General tab

Chris
0
 

Author Comment

by:boomerbostock
ID: 22794579
ok thanks
Zone consist of these
domainname.com.au = primary
domainname.internal = active directory integrated
domainname.com = active directory integrated

Now i have dns running on new server it has replicate all bar the primary zone from the old server. Any idea  why this would be? I didnt set up the old server so not sure why primary..any thoughts?
0
 
LVL 71

Expert Comment

by:Chris Dent
ID: 22794608

The Primary (without AD integration) won't automatically appear because there's no automatic replication method for standard Primary zones. You have a few choices on how we deal with it.

1. Convert it to AD Integrated
Or
2. Configure a Secondary Zone (Forward Lookup Zones / New) on the new DC

Before we choose which we need to know why the zone is there. Is it your public domain name? And if it is, does that version provide answers for clients on the internet?

Chris
0
 

Author Comment

by:boomerbostock
ID: 22794682
yes its public and provides internet answers
0
 
LVL 71

Expert Comment

by:Chris Dent
ID: 22794707

Okay, then you must use the Secondary zone. On the current DC:

1. Open the DNS Console
2. Expand Forward Lookup Zone
3. Select domainname.com.au and open Properties
4. Select Zone Transfers
5. Permit Zone Transfers to the new DC (private / internal IP)
6. Optionally configure Notify, again to the IP of the new DC (private / internal IP)

Then on the new DC:

1. Open the DNS Console
2. Select Forward Lookup Zones
3. Create a new Zone. Type is Secondary
4. Name is domainame.com.au
5. Master is the internal / private IP of the first DC
6. Once the zone creation wizard completes verify that the Transfer from Master option (right click on the zone) works

Now we need to do a bit more work...

1. Correct the NS Records for domainname.com.au so that only Public IP addresses are listed
2. Ensure that the new DC can be reached from the public (it will need its own IP address)
3. You may have to update the name servers for your zone with your registrar

Note that if the new server is taking over from the old you can skip some of those steps and simply redefine the inbound NAT from your Firewall to the DNS server. You will still need to check the NS records are correct for hosting a public zone.

In this case you would open the Properties for the Secondary zone, select Change next to Type, then make the zone Primary (not AD Integrated).

Chris
0
 

Author Comment

by:boomerbostock
ID: 22794861
ok done - the option to transfer from master does that mean i can take control and transfer to new machine by choosing this? As i will be dcpromo the old machine out of the domain when all my changes done.
0
 
LVL 71

Accepted Solution

by:
Chris Dent earned 2000 total points
ID: 22794869

That just tells it to take another copy from the Primary. You'll have to change the Type to Primary to fully take control over it. There should be a Change button next to the Type entry in the properties for the Secondary zone that allows that.

Once you do that, verify the SOA and NS records in the zone, they must be correct for the public.

Chris
0
 

Author Closing Comment

by:boomerbostock
ID: 31509555
Thanks heaps Chris
0
 

Author Comment

by:boomerbostock
ID: 22795003
Chris sorry should have asked
Can i go to old server and change that to secondary and then go to new server and change to primary?
0
 
LVL 71

Expert Comment

by:Chris Dent
ID: 22795122

You'd have to delete the primary zone first, don't do that until you have another primary up and running.

Once it's deleted you can safely add it back as a Secondary zone. Remember to enable Zone Transfers on the new primary (new DC).

Chris
0

Featured Post

Who's Defending Your Organization from Threats?

Protecting against advanced threats requires an IT dream team – a well-oiled machine of people and solutions working together to defend your organization. Download our resource kit today to learn more about the tools you need to build you IT Dream Team!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article is intended as an extension of a blog on Aging and Scavenging by the MS Enterprise Networking Team. In brief, Scavenging is used as follows: Each record in a zone which has been dynamically registered with an MS DNS Server will have…
Resolve DNS query failed errors for Exchange
this video summaries big data hadoop online training demo (http://onlineitguru.com/big-data-hadoop-online-training-placement.html) , and covers basics in big data hadoop .
Despite its rising prevalence in the business world, "the cloud" is still misunderstood. Some companies still believe common misconceptions about lack of security in cloud solutions and many misuses of cloud storage options still occur every day. …
Suggested Courses

579 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question