Solved

DNS name resolution issue

Posted on 2011-03-07
9
357 Views
Last Modified: 2012-05-11
I have two DNS server, is also a global catalog server both in different forest, so
DC1 = FOREST 1, domain name = domain-1.com
DC2 = FOREST 2, domain name = domain-2.com
I have a primary AD integrated zone for domain-1.com in DC1 &
I have a primary AD integrated zone for domain-2.com in DC2
I added domain-1.com as secondary zone in DC2 &
I added domain-2.com as secondary zone in DC1

I have one host A record called “me > 10.240.42.110” in domain-1.com
My WS is residing in domain-2.com when I try to resolve – nslookup me ; I don’t get IP associated with it.

How can I make this configuration work so I am able to resovle the name to IP and IP to name using the secondary dns.
0
Comment
Question by:immipathan
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
9 Comments
 
LVL 3

Expert Comment

by:dmf415
ID: 35063010
make sure the computer you are using that is doing the nslookup has both DNS servers configured in the tcp/ip properties.
0
 
LVL 6

Accepted Solution

by:
Draxonic earned 334 total points
ID: 35063171
dmf415, he doesn't need both DNS servers configured if he has both zones on both servers (excepting of course that it's good to have redundancy)

Try pinging "me.domain-1.com" instead of just pinging "me"

If that works, configure the DNS suffix search order on the client to domain-2.com, domain-1.com.

You will then be able to ping "me" without the suffix.


0
 
LVL 6

Assisted Solution

by:Draxonic
Draxonic earned 334 total points
ID: 35063194
Also, to resolve IP to name, you will need a reverse DNS zone for the address space.

http://support.microsoft.com/kb/323445
0
Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

 
LVL 18

Assisted Solution

by:Jeremy Weisinger
Jeremy Weisinger earned 166 total points
ID: 35063553
Draxonic is correct. You'll need to setup the DNS suffix search list on all the computers. You can do this through group policy. http://technet.microsoft.com/en-us/library/bb847901.aspx
0
 
LVL 27

Expert Comment

by:Steve
ID: 35072161
@immipathan

The problem here is that you are trying to look up a DNS record for 'me.domain-1.com' by typing 'me'
When resolving individual names/addresses, the system automatically ads the correct domain name to the end of it to create a FQDN.

As you are performing the lookup on the DNS server that looks after the domain 'domain-2-com' you are effectively looking for a record called 'me.domain-2.com' which doesn't exist, instead of me.domain-1.com

Either add the secondary DNS suffix as advised above or add a DNS record for me to the domain-2.com DNS and point it to the IP of me.domain-1.com
0
 
LVL 18

Expert Comment

by:Jeremy Weisinger
ID: 35072225
"...or add a DNS record for me to the domain-2.com DNS and point it to the IP of me.domain-1.com"

I wouldn't recommend doing this for two reasons:
1) The administrative overhead of manually creating DNS records for all computers in the other domain and there would be the potential for confusion as to where the computer is administered

2) Computer names would need to be unique across both domains and thus also increasing the administrative burden.
0
 
LVL 6

Expert Comment

by:Draxonic
ID: 35194393
immipathan, were we able to answer your question?
0
 
LVL 70

Expert Comment

by:Qlemo
ID: 35489734
This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.
0

Featured Post

Webinar: Aligning, Automating, Winning

Join Dan Russo, Senior Manager of Operations Intelligence, for an in-depth discussion on how Dealertrack, leading provider of integrated digital solutions for the automotive industry, transformed their DevOps processes to increase collaboration and move with greater velocity.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Did you know that more than 4 billion data records have been recorded as lost or stolen since 2013? It was a staggering number brought to our attention during last week’s ManageEngine webinar, where attendees received a comprehensive look at the ma…
Active Directory security has been a hot topic of late, and for good reason. With 90% of the world’s organization using this system to manage access to all parts of their IT infrastructure, knowing how to protect against threats and keep vulnerabil…
This tutorial will walk an individual through the steps necessary to install and configure the Windows Server Backup Utility. Directly connect an external storage device such as a USB drive, or CD\DVD burner: If the device is a USB drive, ensure i…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question