Solved

Setup DNS for multiple AD domains

Posted on 2009-07-14
1
378 Views
Last Modified: 2012-10-10
We just bought a company that uses SBS 2003, like ourself.  The networks are connected with a VPN tunnel.
I need to setup dns that will resolve to eiother site so uses can use PC nakes for RDP access
0
Comment
Question by:cookd47
1 Comment
 
LVL 70

Accepted Solution

by:
Chris Dent earned 500 total points
ID: 24857317

In DNS, you can use any of:

1. Secondary Zones (fault tolerant, but higher maintenance)
 - Allow Zone Transfers on the remote SBS server
 - Right click on Forward Lookup Zones
 - Create a new Secondary Zone
 - Add the IP address of the remote SBS server

2. Stub Zones (low maintenance, automatically maintained)
 - Right click on Forward Lookup Zones
 - Create a new Stub Zone
 - Add the IP Address of the remote SBS server

3. Conditional Forwarders
 - Open the Server properties
 - Select Forwarders
 - Click New and enter the remote domain name in the box then click OK, enter the IP address of the remote SBS server into the box below while the name is selected

It doesn't much matter which, I would go for 2 or 3 personally, whichever you find easier :)

That gets you as far as each system being able to resolve names by FQDN (e.g. host.domain.com). To be able to resolve by just "host" you need to add the remote domain name into the DNS Suffix Search List on each client. That can be done using Group Policy. This is one way to do it:

1. Open the Group Policy Management Console. If it isn't installed you can get it here: http://www.microsoft.com/DOWNLOADS/details.aspx?FamilyID=0a6d4c24-8cbd-4b35-9272-dd3cbfc81887&displaylang=en
2. Right click on your domain name then select Create and Link a GPO here
3. Call it "DNS Suffixes" (this can be anything you like really)
4. Expand Computer Configuration \ Administrative Templates \ Network \ DNS Client
5. Open the "DNS Suffix Search List"
6. Set it to enabled and enter the name of the remote domain in the box

Now you just need your PCs to realise that policy applies. "gpupdate" should work, reboot certainly will. Once done, you should be able to resolve names by host name alone.

HTH

Chris
0

Featured Post

What Is Threat Intelligence?

Threat intelligence is often discussed, but rarely understood. Starting with a precise definition, along with clear business goals, is essential.

Join & Write a Comment

This guide is intended to provide step by step instructions on how to migrate from Small Business Server 2003 to Small Business Server 2011. NOTE: This guide has been written using the preview version of SBS2011 therefore some of the screens may …
If you have a multi-homed DNS setup in windows, you can have issues with connectivity to the server that hosts the DNS services (or even member servers of your domain if this same DNS server is a DC). This is because windows registers all of its IPs…
Access reports are powerful and flexible. Learn how to create a query and then a grouped report using the wizard. Modify the report design after the wizard is done to make it look better. There will be another video to explain how to put the final p…
When you create an app prototype with Adobe XD, you can insert system screens -- sharing or Control Center, for example -- with just a few clicks. This video shows you how. You can take the full course on Experts Exchange at http://bit.ly/XDcourse.

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now