DNS domain records priority

I am having an issue when a user in the home office pings the domain (ping test.org) the DNS response is NOT from the closest DC, or even one in the site.

How do I change this?

Thanks

LVL 1
ncfbinsAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Ernie BeekExpertCommented:
How is the user connected, VPN of some sort? Make sure that in the vpn setup the domain DNS server (the DC?) is given as the first DNS server.
It's a little bit limited information so I can only give a limited anser :-~
0
ncfbinsAuthor Commented:
The user is local, on the domain.
WIndows 2003 mode. AD integrated DNS.
0
kevinhsiehCommented:
Well, there are two things to consider. Do you have Active Directory Sites and Services configured for all of you sites and subnets?

Ping isn't the right test. DNS doesn't return the closest DC, it returns a list of all DCs in a rotating order. Better to run 'set' from command line and look for the value of logonserver, which should be the local DC.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
ncfbinsAuthor Commented:
Well, there are two things to consider. Do you have Active Directory Sites and Services configured for all of you sites and subnets?

Yes. Just ran through an AD risk assesment and analysis.

Ping isn't the right test. DNS doesn't return the closest DC, it returns a list of all DCs in a rotating order. Better to run 'set' from command line and look for the value of logonserver, which should be the local DC.

the logon server IS a local DC.

My issue is also with DFS name spaces. Which is where this all began.
0
kevinhsiehCommented:
Is the problem that you hit the wrong DFS namespace server, or the wrong DFS namespace target? If you are browsing folders in a DFS namespace, you can right click on a folder, go to the DFS tab and see which server you are connected to. It should show that the active copy is on a local server. If it doesn't, you probably don't have Sites and Services properly configured, though it's possible that the DFS client will pick a server that isn't the closest, that normally doesn't happen if things are setup properly. I have no idea what you are talking about with "AD risk assessment and analysis". Here is a link to the Technet article for managing Sites and Services.

http://technet.microsoft.com/en-us/library/bb727051.aspx

The domain controller needs to be moved to the correct site.
http://technet.microsoft.com/en-us/library/bb727062.aspx#E05B0AA
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
DNS

From novice to tech pro — start learning today.