Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium


dns entries on DC network cards

Posted on 2011-04-28
Medium Priority
Last Modified: 2012-05-11
I have 3 win2008r2 domain controllers, all DNS servers. they have static ip addresses all on the same range. can u please advise the 2 entries I should put on the domain controllers (single) network cards.
DC1 - ip -
DC2 - ip -
DC3 - ip -
Question by:Pete
  • 3
  • 2

Expert Comment

ID: 35486981
for the primary use itself.
For the secondary use dc2 for dc1
use dc3 for dc2
use dc1 for dc3

Author Comment

ID: 35487052
sorry a few qs
how to tell which is primary?
ur reply maybe has some typos, can u please reword in an easier to read way?
another bit of info that dc1 & dc2 are virtual and dc3 physical, so dc3 will always be the first server on after a network shutdown, should dc3 therefore be the primary?
LVL 44

Accepted Solution

Adam Brown earned 1000 total points
ID: 35487322
DNS entries for *all* domain controllers should point to themselves as the primary DNS server. This allows some automatic AD integration and configuration with DNS to occur properly. So DC1's Primary DNS server should be, DC2's should be, and DC3's should be From there it doesn't matter a whole lot what the secondary server is, since if DNS on a Domain Controller fails, the Domain Controller itself fails and there is no reason to have a secondary DNS server. In other words, a Domain Controller will never *not* be able to see itself while it is operational.
Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.


Author Comment

ID: 35487552
great, should it be the actual ip or

Author Comment

ID: 35487572
...and finally what about the physical servers that host the virtual servers, should their primary dns entry be dc3 the only physical dc?
LVL 44

Expert Comment

by:Adam Brown
ID: 35487582
You can use if you want. And the DNS for the Host should probably go to the Physical DC.

Featured Post

Making Bulk Changes to Active Directory

Watch this video to see how easy it is to make mass changes to Active Directory from an external text file without using complicated scripts.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

New Windows 7 Installations take days for Windows-Updates to show up and install. This can easily be fixed. I have finally decided to write an article because this seems to get asked several times a day lately. This Article and the Links apply to…
A procedure for exporting installed hotfix details of remote computers using powershell
This tutorial will walk an individual through locating and launching the BEUtility application and how to execute it on the appropriate database. Log onto the server running the Backup Exec database. In a larger environment, this would generally be …
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…

564 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question