Disaster Recovery Testing - Recovery of alternate DNS to Primary DNS without having Primary on site.

Posted on 2008-11-04
Last Modified: 2012-06-27
I'm restoring a Windows 2003 DC that also is alternate DNS. Infoblox is the primary and is not here. Our zones are shutdown and we have no way to change to primary or change the SOA. Can this be done?
Question by:dakkonblackblade
    LVL 18

    Assisted Solution

    by:Andrej Pirman
    If this is for testing purposes, I'd try the following:
    - after restoration....
    - uninstall DNS on defective server
    - go to TCP/IP properties of your NIC adapter and point it to be its own DNS
    - clear DNS resolver cache with "ipconfig /flushdns"
    - reinstall DNS and tell it to be "Active directory integrated"
    - DNS *should* rebuild based on AD objects database
    I am not sure about all steps, but going some simmilar technique I repaired broken DNS on one DC some time ago. By memory, I think something might be missing in procedure, but if you are testing, you may give it a shot.
    If I remember, I'll post comment.

    Accepted Solution

    Thank you for the response. We found out that with Infoblox our zones are not active directory integrated.  System state restore does not include the C:\windows\system32\dns folder.  After copying the DNS folder to the server the zones came back online and we were able to change their status to primary then integrate them.  

    Thanks for the posting.
    LVL 18

    Assisted Solution

    by:Andrej Pirman
    Yes, thats the simplicity of DNS restoration/migration.

    btw...DNS zone data may be stored ONLY in files, or mixed, partially in files and partially in Windows registry. You change these settings in DNS zone properties tab, so if you want to move/migrate any non-AD-integrated zone, you simply choose "Store zone data in files" and your files in C:\windows\system32\dns will have all DNS needed data.

    Featured Post

    Do You Know the 4 Main Threat Actor Types?

    Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

    Join & Write a Comment

    [b]Ok so now I will show you how to add a user name to the description at login. [/b] First connect to your DC (Domain Controller / Active Directory Server) SET PERMISSIONS FOR SCRIPT TO UPDATE COMPUTER DESCRIPTION TO USERNAME 1. Open Active …
    One of the most often confused topics in the area DNS is the idea of GLUE records. Specifically, what they are, when they are needed, when they are provided, and how they are created. First, WHAT IS GLUE? To understand GLUE, you must first under…
    This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
    This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

    734 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    18 Experts available now in Live!

    Get 1:1 Help Now