Solved

Secondary DNS Zone replicating from Active Directory Integrated Zones

Posted on 2009-05-12
3
457 Views
Last Modified: 2012-05-06
I'm about to take an exam which covers DNS in Server 2008 and although I understand most of the subject as presented in a book I'm reading I have a few quick questions.

Across two child domains in the same forest it is possible for the DNS server in each domain to have a *Secondary* AD zone created that replicates from a Primary AD Integrated Zone in the trusted domain - is that statement true? Does it still use the Zone Transfers tab?

A Stub Zone will cache results but will it ever answer queries from its cache?

In Stub Zones is the glue A record present to allow Stub Zones to find the name server in zones that it is querying a name for? If so, what's wrong with the NS record for the zone, or have I misunderstood?

Thanks

AdoBeebo
0
Comment
Question by:AdoBeebo
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 71

Accepted Solution

by:
Chris Dent earned 500 total points
ID: 24368134

> is that statement true?

Yes, although the Secondary Zone is not stored in Active Directory.

> Does it still use the Zone Transfers tab?

Yes, no replication can occur with a trusted domain (external to the forest) so it must use Zone Transfers.

> A Stub Zone will cache results but will it ever answer queries from its cache?

Yep. No point in caching if the cache can't be used :)

> In Stub Zones is the glue A record present to allow Stub Zones to find the name server in zones
> that it is querying a name for? If so, what's wrong with the NS record for the zone, or have I misunderstood?

The NS records state who is responsible for a particular zone. Glue helps you find the servers the NS records point to.

For example, you might have these in a stub zone:

bobsdomain.com.  IN NS  ns1.bobsdomain.com.
bobsdomain.com.  IN NS  ns1.otherdomain.com.

The Glue helps you find those two name servers by placing these records within the zone:

ns1.bobsdomain.com.  IN A  1.2.3.4
ns1.otherdomain.com.  IN A 1.2.3.5

Note that the two name servers do not have to be within the same domain, the glue is still present even though it is for a server that doesn't live in the same domain. Glue ships along with NS records to prevent circular lookups which can cause deadlock.

Chris
0
 
LVL 3

Author Closing Comment

by:AdoBeebo
ID: 31580644
wicked thanks, 70-642 here I come :)
0
 
LVL 71

Expert Comment

by:Chris Dent
ID: 24368997

Good luck :)

Chris
0

Featured Post

Forrester Webinar: xMatters Delivers 261% ROI

Guest speaker Dean Davison, Forrester Principal Consultant, explains how a Fortune 500 communication company using xMatters found these results: Achieved a 261% ROI, Experienced $753,280 in net present value benefits over 3 years and Reduced MTTR by 91% for tier 1 incidents.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

OfficeMate Freezes on login or does not load after login credentials are input.
A safe way to clean winsxs folder from your windows server 2008 R2 editions
This tutorial will walk an individual through locating and launching the BEUtility application and how to execute it on the appropriate database. Log onto the server running the Backup Exec database. In a larger environment, this would generally be …
This tutorial will give a short introduction and overview of Backup Exec 2012 and how to navigate and perform basic functions. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as conne…

728 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question