Solved

dns on server 2003 child domains help needed

Posted on 2008-10-31
2
206 Views
Last Modified: 2010-04-07
Hi, my company has a domain and 3 child domains. The child domains are all connected via VPN and are located in different geographical locations.
The question is simply, how SHOULD DNS be setup for this kind of setup? Should each child domain host its own DNS Server with their own primary zones, and have these activie directory integrated? Or should each DNS server at each site have itw own Primary Zone and other DNS Servers have these zones setup as secondary zones that are transferred from Master?
Any ideas would be gratefully appreciated.
Thanks
0
Comment
Question by:healthmanagement
2 Comments
 
LVL 70

Accepted Solution

by:
KCTS earned 63 total points
ID: 22849562
There is no reason that they should not be active directory integrated zones but if they represent different grographical locations then the DNS is best delegated - see http://articles.techrepublic.com.com/5100-10878_11-5846057.html

PS - You dont not necessarily need to have different domains for different sites - a single domain with multiple sites is sufficient.
0
 
LVL 14

Assisted Solution

by:Kaffiend
Kaffiend earned 62 total points
ID: 22849610
Yes, you would *need* a DNS server for every (child) domain, otherwise DNS queries would unnecessarily clog up your VPN tunnel.

Yes, definitely, Active-Directory primary zones - let AD deal with zone transfers.

If you haven't already implemented child domains, just create "Sites", and put a DC (preferably 2 of them) with DNS at each site.  Each site needs a Global Catalog as well.  Be sure to adjust site link costs to minimize replication traffic.


0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I wrote this article to explain some important DNS concepts that should be known to avoid some typical configuration errors I often see in forums. I assume that what is described here is the typical behavior of Microsoft DNS client. I don't know …
While rebooting windows server 2003 server , it's showing "active directory rebuilding indices please wait" at startup. It took a little while for this process to complete and once we logged on not all the services were started so another reboot is …
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

840 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question