Solved

DNS Not Working After Demoting Dc's

Posted on 2009-07-13
8
286 Views
Last Modified: 2012-05-07
I just demoted two of my Windows 2000 DC's since I just got two new DC's. Anyway I'm running AD integrated DNS zones. When I demoted these server DNS was removed. The people is some of my client had static enteries to these servers and now they cannot access resourse like the web. How can I setup these old server to forward and request to the new servers???? Or should I so how copy the AD zone to these servers????

URGENT!!!!!11
0
Comment
Question by:compdigit44
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 4
8 Comments
 
LVL 57

Expert Comment

by:Mike Kline
ID: 24843855
Can you change their static DNS entries to point to the new DC/DNS boxes?
How big is your AD?  You could quickly promote those boxes again just to get them back up and running until you come up with a strategy.
Thanks
Mike
 
0
 
LVL 20

Author Comment

by:compdigit44
ID: 24844234
I have over 300 clients...

How can I setup my old dns servers to forward all DNS request to the new servers????
0
 
LVL 57

Expert Comment

by:Mike Kline
ID: 24844335
The clients will need to be able to contact a DNS server that holds the DC/SRV records for your domain.
On your 2000 boxes create a secondary zone for your domain and transfer the information from your current DNS servers.
You don't have conditional forwarding available on that 2000 box.
0
Office 365 Training for Admins - 7 Day Trial

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

 
LVL 20

Author Comment

by:compdigit44
ID: 24844592
I don't know how this is working so please explain... On my one DC's what host Active Directory DNS I just added my new DC as a forwarder after waiting 15 minutes clients pointing to my old dns server were able to access the internet once again.. How is this working?????
0
 
LVL 57

Expert Comment

by:Mike Kline
ID: 24844743
because you configured a forwarders which sends queries to the new server.
Without that it should have used root hints if those were setup properly.
Thanks
Mike
0
 
LVL 20

Author Comment

by:compdigit44
ID: 24844867
So let just confirm to make sure I'm understanding thigs correctly...

DNS is installed and running on my old DC but does not contains any DNS zones. I setup my new DC's under the forwards tab. So basically when clients used the old DC for DNS the old DNS server will just send all of these queries to my new DC's correct????
0
 
LVL 20

Author Comment

by:compdigit44
ID: 24848091
Also of my as I mentioned before 300 clients have static DNS mapping to these old DNS servesr but I have another 150+ workstation that are set to DHCP. How can I use the netsh command to change the DNS entieries on my workstations with static enteries only
0
 
LVL 57

Accepted Solution

by:
Mike Kline earned 500 total points
ID: 24851480
Yes they are forwarding to your new box now.  
Daniel has a good entry about netsh and has good examples
http://www.petri.co.il/configure_tcp_ip_from_cmd.htm
You could use a login script or psexec (haven't tested that).
How come they are all using static IPs?
Thanks
Mike
0

Featured Post

Instantly Create Instructional Tutorials

Contextual Guidance at the moment of need helps your employees adopt to new software or processes instantly. Boost knowledge retention and employee engagement step-by-step with one easy solution.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Last week, our Skyport webinar on “How to secure your Active Directory” (https://www.experts-exchange.com/videos/5810/Webinar-Is-Your-Active-Directory-as-Secure-as-You-Think.html?cid=Gene_Skyport) provided 218 attendees with a step-by-step guide for…
This article demonstrates probably the easiest way to configure domain-wide tier isolation within Active Directory. If you do not know tier isolation read https://technet.microsoft.com/en-us/windows-server-docs/security/securing-privileged-access/s…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

738 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question