Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

Secondary DNS Zone replicating from Active Directory Integrated Zones

Posted on 2009-05-12
3
Medium Priority
?
469 Views
Last Modified: 2012-05-06
I'm about to take an exam which covers DNS in Server 2008 and although I understand most of the subject as presented in a book I'm reading I have a few quick questions.

Across two child domains in the same forest it is possible for the DNS server in each domain to have a *Secondary* AD zone created that replicates from a Primary AD Integrated Zone in the trusted domain - is that statement true? Does it still use the Zone Transfers tab?

A Stub Zone will cache results but will it ever answer queries from its cache?

In Stub Zones is the glue A record present to allow Stub Zones to find the name server in zones that it is querying a name for? If so, what's wrong with the NS record for the zone, or have I misunderstood?

Thanks

AdoBeebo
0
Comment
Question by:AdoBeebo
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 71

Accepted Solution

by:
Chris Dent earned 2000 total points
ID: 24368134

> is that statement true?

Yes, although the Secondary Zone is not stored in Active Directory.

> Does it still use the Zone Transfers tab?

Yes, no replication can occur with a trusted domain (external to the forest) so it must use Zone Transfers.

> A Stub Zone will cache results but will it ever answer queries from its cache?

Yep. No point in caching if the cache can't be used :)

> In Stub Zones is the glue A record present to allow Stub Zones to find the name server in zones
> that it is querying a name for? If so, what's wrong with the NS record for the zone, or have I misunderstood?

The NS records state who is responsible for a particular zone. Glue helps you find the servers the NS records point to.

For example, you might have these in a stub zone:

bobsdomain.com.  IN NS  ns1.bobsdomain.com.
bobsdomain.com.  IN NS  ns1.otherdomain.com.

The Glue helps you find those two name servers by placing these records within the zone:

ns1.bobsdomain.com.  IN A  1.2.3.4
ns1.otherdomain.com.  IN A 1.2.3.5

Note that the two name servers do not have to be within the same domain, the glue is still present even though it is for a server that doesn't live in the same domain. Glue ships along with NS records to prevent circular lookups which can cause deadlock.

Chris
0
 
LVL 3

Author Closing Comment

by:AdoBeebo
ID: 31580644
wicked thanks, 70-642 here I come :)
0
 
LVL 71

Expert Comment

by:Chris Dent
ID: 24368997

Good luck :)

Chris
0

Featured Post

Free Backup Tool for VMware and Hyper-V

Restore full virtual machine or individual guest files from 19 common file systems directly from the backup file. Schedule VM backups with PowerShell scripts. Set desired time, lean back and let the script to notify you via email upon completion.  

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Background Information Recently I have fixed file server permission issues for one of my client. The client has 1800 users and one Windows Server 2008 R2 domain joined file server with 12 TB of data, 250+ shared folders and the folder structure i…
This article explains how to install and use the NTBackup utility that comes with Windows Server.
This tutorial will show how to configure a single USB drive with a separate folder for each day of the week. This will allow each of the backups to be kept separate preventing the previous day’s backup from being overwritten. The USB drive must be s…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…

636 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question