Setting up secondary DNS

I have a 2 windows 2000 servers.  1 is an exchang 2003 and DC and DNS.  the other is a data server that is also a DC.

We have a new 2003 server that is setup as a DC.

How can I either transfer all dns services to the new 2003 server or add it as a secondary DNS server?
LVL 1
lefty431Asked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

alienvoiceCommented:
0
Malli BoppeCommented:
Go the new server control panel windows componeents and install DNS makre sure that you chose the option Active diretory integrated.
Also on the new server NIC->TCP/IP properties.Point the DNS server to the server IP address.
Add the new server in the DHCP scope options.
http://support.microsoft.com/kb/323417 
0
lefty431Author Commented:
can I leave both functioning as a primary and a secondary?  just add the new server to the secondary on the clients?

on the clients, in addition to having the active Dir DNS servers in the list, should I also have the ISP dns server in the list?

the problem we are having is if the active directory dns server goes off line for whatever reason, no one can get to the internet.  
0
Hey MSSPs! What's your total cost of ownership?

WEBINAR: Managed security service providers often deploy & manage products from a variety of solution vendors. But is this really the best approach when it comes to saving time AND money? Join us on Aug. 15th to learn how you can improve your total cost of ownership today!

Malli BoppeCommented:
Yeah you can have both the DNS servers running.
No don't add the ISP dns servers.
On the 2nd DNS server add your ISP dns servers as forwarders and it should fix the problem.I guess the Old DNS server has already got ISP dns servers as forwarders.
0
lefty431Author Commented:
it doesn not have any ISP dns servers as forwarders.  

we have had an issue though when this server needs to be rebooted and all of the clients are stuck.  they can't do a thing on the internet.  Just looking for a way to shore that up a bit.
0
Exchange_GeekCommented:
It seems we are awaiting response.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
lefty431Author Commented:
a response for what?
0
Malli BoppeCommented:
On you primary DNS server check the network properties.Does it have a 2nd DNS server as ISP?I am not sure how you are getting to internet with this DNS server
Can you add ISP dns server as a forwarder in the 2nd dns server and you should be fine with only this DNS server on the network.
0
lefty431Author Commented:
I am not sure on the first dns server either.  I would think from the gateway?  I think the router has some dns server information in it form the ISP.  

I will do it on the 2nd dns server as you suggested in the morning and see if I can get it to work.
0
Exchange_GeekCommented:
Well, so many recommendations - wer u able to impliment any ?? did you get your solution ?
0
ChiefITCommented:
I think there are going to be hidden problem we are going to come across on this post. So, I am going to assist when needed. Let me know if I can help.

0
lefty431Author Commented:
In a normal active directory.  can some one walk me through the routing?

clients look at PDC as DNS.  DNS looks at Gateway, gateway has ISP DNS listed?

0
Exchange_GeekCommented:
Clients look at DNS server for DNS Query (this could be your PDC / BDC / stand along box)
For gateway - ideally it should point to your router / switch.

DC would look at forwarding packets to Gateway (same as above).
For DNS Query using DNS Forwarding query in DNS Console ISP DNS is added.

Router would forward the network traffic to your firewall or outside world as per your settings.
0
lefty431Author Commented:
if I put the ISP dns in the client boxes then none of them work with Active Directory very well..  should the DC still be the primary dns?

my overall goal is to configure things so if I loose a DC, the clients can still get to the internet...
0
Exchange_GeekCommented:
if I put the ISP dns in the client boxes then none of them work with Active Directory very well..  should the DC still be the primary dns

Using ISP DNS is never recommended on client machines for reasons.
1) ISP DNS will not help you client box with your internal Active Directory day-2-day query.
2) If your Primary DNS fails - Client will start sending query for every task related to AD and you would end up with hundreds of account lockouts soon.

What is the point for client to go to the internet if their AD authentication does not succeed, I would suggest have one more AD server as a secondary DNS box and work towards adding it as secondary DNS server rather than depending on ISP Boxes.


0
lefty431Author Commented:
So if the first DNS server fails, the second would continue to work correct/

so in my configuration I need to take one of the AD servers, add DNS and sync it up.  then on the clients add the IP of the second dns server to the clients.

if the first server goes out, internet will continue to work?

the problem now is that the first dns server is a little flaky.  sometimes it freezes and when this happens no client can get to the internet.  I would just like to safe guard against that.
0
Exchange_GeekCommented:
"So if the first DNS server fails, the second would continue to work correct/

so in my configuration I need to take one of the AD servers, add DNS and sync it up.  then on the clients add the IP of the second dns server to the clients.

if the first server goes out, internet will continue to work?"

Answer: YES
0
ChiefITCommented:
@ Exchange Geek:

He is adding a 2003 domain server to a 2000 server environment. Maybe we need to back up a little and Domain prep/Forest prep this domain for mixed mode and then add the 2003 server as a domain controller. Then, replicate the data across.

I think the problem with replicating the data is you have a mixed mode environment that was not prepped. This was the hidden problem I was anticipating.
0
Darius GhassemCommented:
Also, I would recommend updating the Foreset level to native to place a 2003 DC on a 2000 domain. I have seen multiple problems with a mixed mode forest and 2003 DCs.

Here is a good link to DNS forwarding. You should never have external DNS servers within your internal domains clients' and servers' TCP\IP properties.

http://www.windowsnetworking.com/articles_tutorials/DNS_Conditional_Forwarding_in_Windows_Server_2003.html
0
ChiefITCommented:
I agree with you dariusq:

I usually don't Forest/domain prep. Instead I usually build a new domain and move my NAS over. That starts us off fresh with new AD, DNS and DHCP databases. My mail servers are separate entities, not even on the domain.

If we were to prep this domain for the 2003 server, then replicate the data, I agree in thinking we should make it a 2003 server native mode domain. But we need to get the data off the 2000 domain that is currently active. Since I don't prep the domains when updating, what do you recommend? (example: these steps?)

1) forest prep/domain prep the 2000 server
2) DCPromo the 2003 server
3) transfer roles to the 2003 server
4) replicate the Data to the 2003 server
5) demote the 2000 servers
6) Forest prep back to native mode on the 2003 servers.  
0
Darius GhassemCommented:
Everything seems good except I would put number one as raise 2000 mix mode forest level to 2000 native mode before doing any adprep on the domain.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Microsoft Server OS

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.